Authenticating and creating accounts on behalf of another user

ABSTRACT

Embodiments described herein provide for a satellite device that can be associated with a user account of a minor aged (e.g., child or adolescent) user that does not have a smartphone that can be used as a companion device to the satellite device. The satellite device can be configured to be used as a primary device, without reliance upon a paired smartphone. Certain information can be synchronized with the satellite device via the association with the family account. During initial configuration, a set of cryptographic keys can be generated to associate the account of the satellite device with the set of accounts in the family. The satellite device can then access calendars, media, or other data that is shared with user accounts within a family of user accounts.

CROSS-REFERENCE

This application is a divisional of U.S. patent application Ser. No.16/865,014, filed May 1, 2020, which claims priority to U.S. ProvisionalPatent Application No. 62/843,833, filed on May 6, 2019, and U.S.Provisional Patent Application No. 62/856,010, filed on Jun. 1, 2019,the entire contents of each is hereby incorporated herein by reference.

BACKGROUND OF THE DISCLOSURE

In addition to keeping time, users may desire wearable electronicdevices to be able to perform a variety of other operations includingrunning software applications. A user may wish to access different typesof information, such as various aspects related to keeping time, ordifferent application data points, in different contexts. Generally,wearable electronic devices are associated or paired with a companiondevice, through which many operational details of the wearable devicemay be configured.

SUMMARY OF THE DESCRIPTION

Embodiments described herein provide for a satellite device that can beassociated with a user account of a minor aged (e.g., child oradolescent) user that does not have a smartphone that can be used as acompanion device to the satellite device. The satellite device can beconfigured to be used as a primary device, without reliance upon apaired smartphone. Certain information can be synchronized with thesatellite device via the association with the family account. Duringinitial configuration, a set of cryptographic keys can be generated toassociate the account of the satellite device with the set of accountsin the family. The satellite device can then access calendars, media, orother data that is shared with user accounts within a family of useraccounts. Where a child user does not have an account to associated withthe satellite device, a parent user can create an account on behalf ofthe child user.

Other embodiments described herein provide for a satellite device thatcan be a managed enterprise device associated with a managed enterpriseaccount. Certain information can be synchronized with the satellitedevice via the association with a group of enterprise accounts. Forexample, the satellite device can then access calendars, media, or otherdata that is shared with user accounts within a group of enterprise useraccounts. The satellite device can also support enterprise accountcreation by a management device on behalf of an employee or anotherenterprise user.

One embodiment provides a non-transitory machine-readable medium storinginstructions to cause one or more processors of an electronic device toperform operations comprising establishing a wireless data connectionbetween the electronic device and a wireless accessory, displaying aprompt for authentication credentials associated with a first account,wherein the first account is to be associated with the wirelessaccessory and the first account differs from a second account, thesecond account associated with the electronic device, transmittingauthentication credentials for the first account to a first server,receiving an authentication response from the first server, wherein theauthentication response indicates that the wireless accessory is trustedby the first server, and sending credentials to the wireless accessoryto enable the wireless accessory to authenticate with a second serverusing the first account.

One embodiment provides an electronic device comprising a first wirelessnetwork interface, a second wireless network interface, a touch-screendisplay, and one or more processors to execute instructions stored inmemory. The instructions to cause the one or more processors toestablish a first data connection with an external electronic device viathe first wireless network interface, display, via the touch-screendisplay, a prompt to request input of a passcode for the electronicdevice, store a received passcode within memory of the electronicdevice, and receive, via the first data connection, credentials for anaccount to associate with the electronic device, the credentialsreceived via a user interface presented on the external electronicdevice. The one or more processors can additionally establish a seconddata connection with a server device via the second wireless networkinterface, authenticate with the server device via the credentials forthe account, and after authentication with the server device via thecredentials for the account, configure the electronic device toauthenticate with the server device via the passcode stored within thememory of the electronic device.

One embodiment provides for a non-transitory machine readable mediumstoring instructions to cause one or more processors of a mobileelectronic device to perform operations of a system, method, or mobileelectronic device as described herein. Other features of the presentembodiments will be apparent from the accompanying drawings and from thedetailed description, which follows.

BRIEF DESCRIPTION OF THE DRAWINGS

Embodiments of the present invention are illustrated by way of example,and not limitation, in the figures of the accompanying drawings in whichreference numbers are indicative of origin figure, like references mayindicate similar elements, and in which:

FIG. 1A-1B illustrates a wearable electronic device and a companionmobile electronic device, according to embodiments described herein;

FIG. 2A-2B illustrate components of a wearable electronic device,according to an embodiment;

FIG. 3A-3C illustrate exemplary welcome and instruction screens for awearable device;

FIG. 4A-4C show exemplary instruction screens to enable setup of awearable device;

FIG. 5A-5D illustrate user interfaces to configure an accessory deviceas a satellite accessory;

FIG. 6A-6B illustrate methods to configure an accessory device as asatellite accessory;

FIG. 7A-7B illustrate sequence diagrams to create and trust an accountfor use with a satellite accessory;

FIG. 8A-8F illustrate exemplary user interfaces to enable use of awearable accessory device as a primary device;

FIG. 9A-9B illustrate systems to synchronize data between a satelliteaccessory and a management device;

FIG. 10A-10B illustrate methods to synchronize data between a satelliteaccessory and a management device;

FIG. 11A-11C illustrate exemplary user interfaces to facilitate softwareupdates on a satellite accessory;

FIG. 12 illustrate a method to perform software updates on a satelliteaccessory;

FIG. 13A-13C illustrate a system to enable peer-to-peer configuration ofa satellite accessory;

FIG. 14 illustrates a method of performing peer-to-peer configuration ofa satellite accessory;

FIG. 15 illustrates a migration architecture that enables the upgrade ofhardware of a management device associated with a satellite accessory;

FIG. 16 illustrates a method to enable hardware upgrade of a managementdevice associated with a satellite accessory;

FIG. 17 illustrates a system to enable transition of a satelliteaccessory to a paired accessory of a companion device;

FIG. 18 illustrates a method to enable transition of a satelliteaccessory to a paired accessory of a companion device;

FIG. 19 is a block diagram of mobile device architecture, according toan embodiment; and

FIG. 20 is a block diagram of one embodiment of a computing system.

DETAILED DESCRIPTION

While, wearable electronic devices are generally associated or pairedwith a companion device, embodiments described herein provide a wearableelectronic device that can be operated without an associated companiondevice. In this context, a companion device is an electronic device thatis connected to, paired with, or associated with a wearable electronicdevice. The companion device may be in continuous or periodiccommunication with the wearable electronic device and can performcomputing operations in concert with or on behalf of the wearabledevice. For example, a smartphone or tablet computing device may be acompanion device to a wearable electronic device, such as, but notlimited to, a smartwatch device. During initial configuration of thewearable device, the device can be designated as a standalone wearabledevice that is not to be in persistent communication with the companiondevice that is being used to configure the wearable device. In oneembodiment, a variant of a standalone wearable device can be configuredto work in concert with an electronic device that does not include allof the functionality necessary to be configured as a conventionalcompanion device. For example, a standalone wearable device can beconfigured to work in concert with a smartphone from a different vendoror manufacturer than the wearable device.

In one embodiment, the standalone wearable device can be associated witha user or user account that is different from the account associatedwith the user that is configuring the wearable device. The wearableelectronic device can have an interface that includes an internaldisplay device and a touch input interface. The touch input interfacecan be configured to allow the wearable device to act as a primarydevice. Functionality that previously would be configured via acompanion application on a paired companion device can be performeddirectly on the interface of the wearable device.

In some embodiments the standalone wearable device is configured as asatellite device that is associated with an account that is in a familyor group of user accounts. For example, a satellite device can beassociated with an account of a minor aged (e.g., child or adolescent)member of a family that does not have a smartphone that can be used as acompanion device to the satellite device. The satellite device may alsobe configured for use by an older adult within the same family. Inanother example, a satellite device can be managed device of anemployee, with some functionality associated with an enterprisemanagement account. The satellite device can be configured to be used asa primary device, without reliance upon a paired smartphone.Accordingly, the satellite device may also be configured for an adultuser that does not have an associated compatible companion device ordoes not wish to use the satellite device with a companion device.Certain information can be synchronized with the satellite device viathe association with the family or enterprise account. During initialconfiguration, a set of cryptographic keys can be generated to associatethe account of the satellite device with the set of accounts in thefamily or enterprise group.

The satellite device can access calendars, media, or other data that isshared with the family or group of user accounts. A user having a familyaccount that is configured as a parent (or guardian) account can pushcalendar or contact information to the satellite device via aserver-based link between the guardian account and the accountassociated with the satellite device. In one embodiment the satellitedevice can access calendars, media, or other data associated with a setof enterprise accounts. A management account can be configured thatpushes or shared calendar, media, or other data to employees within agroup of accounts.

The techniques described herein can be applied to a variety of wearabledevices, including watches, GPS trackers, fitness trackers, glasses(e.g., virtual reality, mixed reality, and/or augmented reality headmounted displays), jewelry, shoes, clothes, or other wearable items,heart monitors, health sensors, glucose monitors, audio accessories(e.g., headphones or earphones) and other accessories that can worn by auser. In one embodiment, the techniques described herein can be appliedto non-wearable connected devices, such as connected speaker devices.Thus, even though the portions of the following description usesmartwatches as example wearable devices, embodiments provide techniquesthat can apply to other types of accessories or devices.

Software versions in use on the satellite watch can be kept up to dateor synchronized with the device associated with the guardian account.For example, when a guardian account approves a set of terms andconditions associated with an end-use license agreement for operatingsystem software, the agreement can also be applied to the satellitedevice and the satellite device can be automatically updated to softwareversions for which the agreed-to terms and condition apply. A managementaccount associated with an enterprise satellite device can also approveterms and conditions for the satellite device. Software updates forsatellite device can also be limited to those versions of the softwarethat are compatible with the software version on the device associatedwith the guardian or management account. Compatible versions are thoseversions that will not break the communication link between the deviceof the guardian or management account and the satellite device.

When a wearable accessory, such as a smartwatch, is paired with acompanion device, the wearable accessory can rely upon the smartwatch toperform a significant amount of communication to remote devices andservers on behalf of the smartwatch. Data can then be relayed to thesmartwatch via a low energy wireless connection. When a wearableaccessory device is acting as a standalone or a satellite device, theaccessory can act as a primary device and maintain network connectionsto remote servers on its own via, for example, a Wi-Fi or cellularconnection.

Reference in the specification to “one embodiment” or “an embodiment”means that a feature, structure, or characteristic described inconjunction with the embodiment can be included in at least oneembodiment of the invention. The appearances of the phrase “in oneembodiment” in various places in the specification do not necessarilyall refer to the same embodiment.

The processes depicted in the figures that follow are performed byprocessing logic that comprises hardware (e.g. circuitry, dedicatedlogic, etc.), software (as instructions on a non-transitorymachine-readable storage medium), or a combination of both hardware andsoftware. Although the processes are described below in terms of somesequential operations, it should be appreciated that some of theoperations described may be performed in a different order. Moreover,some operations may be performed in parallel rather than sequentially.

In the figures and description to follow, reference numbers areindicative of the figure in which the referenced element is introduced,such that an element having a reference number of N00 is firstintroduced in FIG. N. For example, an element having a reference numberbetween 100 and 199 is first shown in FIG. 1 , while an element having areference number between 200 and 299 is first shown in FIG. 2 , etc.Within a description of a given figure, previously introduced elementsmay or may not be referenced.

Exemplary Wearable Electronic Device

FIG. 1A-1B illustrates a wearable electronic device and a companionmobile electronic device, according to embodiments described herein.FIG. 1A illustrates a wearable electronic device in the form of awristwatch device. FIG. 1B illustrates an exemplary mobile electronicdevice in the form of a smartphone device. Although specific examplesare shown, embodiments described herein are applicable to additionalelectronic devices. For example, exemplary wearable electronic devicesinclude various forms of time keeping devices, electronic orcomputerized glasses, sports related devices, pedometers, and or healthand medical devices. Exemplary mobile electronic devices include tabletcomputers, navigation devices, and may also include laptop computers.

As shown in FIG. 1A, one embodiment provides a wearable electronicdevice 100 that includes a device body 110 that can be attached to awrist of a user using a band assembly. The exterior surface of thedevice body 110 is defined, in part, by the exterior surface of ahousing 101 and the exterior surface of a cover 109. The device body 110is substantially rectangular with round or curved side portions,although other shapes and/or designs can be implemented. The outersurfaces of the cover 109 and the housing 101 coincide at a jointinterface and cooperate to form a continuous contoured surface. Thecontinuous contoured surface may have a constant radius and may betangent to a flat middle portion of the cover 109 and/or a flat bottomportion of the housing 101. In some embodiments, the cover 109 hassubstantially the same shape as a flat bottom portion and at least aportion of the curved side portions of the housing 101. The housing 101may be formed from a variety of materials, including, without limitationplastic, glass, ceramics, fiber composites, metal (e.g., stainlesssteel, aluminum, magnesium), other suitable materials, or a combinationof these materials. Further, the housing 101 may include a surfacetreatment or coating, which may be formed from a variety of materials,including, without limitation aluminum, steel, gold, silver and othermetals, metal alloys, ceramics, wood, plastics, glasses, and the like.

The illustrated wearable electronic device 100 may be referred to hereinas a wearable device, a device, an electronic wristwatch, or anelectronic watch. While these terms may be used with respect to certainembodiments, the functionality provided by the illustrated electronicwearable device 100 may be substantially greater than or vary withrespect to many traditional electronic watches or timekeeping devices.For example, the techniques described herein are applicable to anywearable device. In addition to smart watch devices, a wearable devicedescribed herein can be or include GPS trackers, fitness trackers,glasses (e.g., virtual reality, mixed reality, and/or augmented realityhead mounted displays), jewelry, shoes, clothes, or other wearableitems, heart monitors, health sensors, glucose monitors, audioaccessories (e.g., headphones or earphones) and other accessories thatcan worn by a user. Thus, even though the portions of the followingdescription use smartwatches as example wearable devices, embodimentsprovide techniques that can apply to other types of accessories.

The wearable electronic device 100 includes a display 102 that isdisposed at least partially within an opening or cavity defined within atop portion of the housing 101 of the device body 110. The display maybe formed from a liquid crystal display (LCD), organic light emittingdiode (OLED) display, organic electroluminescence (OEL) display, orother type of display device. The display 102 may be used to presentvisual information to the user and may be operated in accordance withone or more display modes or the software applications being executed onthe device 100. By way of example, the display may be configured topresent the current time and date similar to a traditional watch ortimepiece. The display may also present a variety of other visualinformation that may correspond to or be produced using one of the othermodules in the wearable electronic device 100. For example, the display102 may be configured to display one of a variety of notificationmessages, which can be generated based on data received from the one ormore sensors, the wireless communication system, or other subsystem ofthe wearable electronic device 100. The display 102 may also beconfigured to present visual information or data that is based on theoutput of one or more sensor outputs. The display 102 can also providestatus or information related to a wireless charging process or batterypower. The display 102 can also present visual output or informationrelated to media being produced using a speaker or acoustic module ofthe wearable electronic device 100. Accordingly, a variety of othertypes of visual output or information may be presented using thedisplay.

In the current example, the display 102 includes or is integrated with acover 109 that helps to protect the display from physical impact orscratches. In the field of wearable devices, the cover 109 may also bereferred to generically as a crystal or cover glass, regardless of thematerial that is used to form the cover 109. In some cases, the cover109 is formed from a sheet or block of sapphire material. Sapphire mayprovide superior optical and surface hardness properties as compared toother materials. In some cases, the sapphire material has a hardness ofapproximately 9 on the Mohs scale. In alternative embodiments, the cover109 is formed from a glass, polycarbonate, or other opticallytransparent material. The cover 109 may also be coated with one or moreoptical or mechanical enhancing materials or surface treatments. Forexample, interior and/or exterior surfaces of the cover 109 may becoated with an anti-reflective (AR), oleophobic or other coating toenhance the visible or functional properties of the display. In somecases, the cover 109 may be configured to cooperate with an antenna usedto facilitate wireless communication with an external device.

The cover 109 is formed from a transparent or semi-transparent materialand, when assembled has an external surface and an internal surface. Thecover 109 is disposed above the display and encloses a cavity or openingformed in the top portion of the housing 101. In some embodiments, theexternal surface of the cover 109 cooperates with the external surfaceof the housing to form a substantially continuous external peripheralsurface of the electronic device. The external surface of the cover 109has a flat middle portion at the center of the cover, which extendsoutwardly. The cover 109 can also include a curved edge portion thatemanates from and surrounds the flat middle portion and extendsoutwardly to an edge at the side of the cover 109. In some embodiments,the cover 109 also includes an opaque mask disposed relative to theinternal surface of the transparent cover. The opaque mask maycorrespond to or otherwise define the viewable area of the display 102.The mask may have an outer boundary that is located proximate the edgeof the side of the cover 109 and has an inner boundary located withinthe curved edge portion of the cover 109.

In some instances, the cover 109 is disposed relative to a touch sensor,which may be integrated with the display 102 or other element of thewearable electronic device 100. The touch sensor can be formed from oneor more capacitive sensor electrodes or nodes that are configured todetect the presence and/or location of an object or the user's fingerthat is touching or nearly touching the surface of the display. In somecases, the touch sensor includes an array of sensing nodes formed inaccordance with a mutual capacitance sensing scheme. Alternatively oradditionally, the touch sensor may include one or more self-capacitivenodes or electrodes that are configured to detect a discharge ofelectrical current or charge when an object, such as a user's finger,contacts or nearly contacts a surface of the housing 101 or othersurface of the wearable electronic device 100. Other types ofelectronically sensing nodes, including resistive, inductive, or thelike, may also be integrated into a surface of the wearable electronicdevice 100.

In some embodiments, the wearable electronic device 100 may also includea force sensor. The force sensor may be disposed relative to the display102 or integrated with other elements of the wearable electronic device100. In some cases, the force sensor includes one or more force sensingstructures or force-sensing nodes for detecting and measuring themagnitude of a force or pressure due to a touch on a surface of thewearable electronic device 100. The force sensor may be formed from orimplement one or more types of sensor configurations. For example,capacitive and/or strain based sensor configurations may be used aloneor in combination to detect and measure the magnitude of a force orpressure due to a touch. As described in more detail below, a capacitiveforce sensor may be configured to detect the magnitude of a touch basedon the displacement of a surface or element on the device. Additionallyor alternatively, a strain-based force sensor may be configured todetect the magnitude of a touch based on the deflection.

As discussed above, the display, the touch sensor, and force sensor maybe disposed within the housing 101. In this example, one or more buttons144 and a crown 142 used to receive user input may also be disposedwithin or relative to the housing 101. Other types of user input,including for example, one or more dials, slides, or similar user inputdevices or mechanisms may also be disposed within or relative to thehousing 101. The housing 101 can include various features for attachingand mounting the subassemblies and modules of the device 100. Inparticular, the housing 101 may have one or more openings for receivingthe cover 109, the display, the force sensor, or other components. Thehousing 101 may also include one or more holes or openings for receivingthe button 144 and crown 142 that are located around the perimeter ofthe wearable electronic device 100. In some embodiments, the housing 101also includes internal features, such as bosses and threaded portions,that can be used to attach modules or components within the housing 101.

The wearable electronic device 100 may also include an ambient lightsensor (ALS) that is configured to detect and measure changes in ambientlighting conditions. The ALS may include a photodiode and one or moreoptical elements or lenses for collecting light. An ALS may be locatedon an external facing surface that is less likely to be blocked when thedevice is worn or in use. The ALS may be used to adjust settings,including screen brightness and other visual output depending on theoverall lighting conditions.

The housing 101 may also include one or more motion-sensing elements ordevices for detecting motion of the wearable electronic device 100. Forexample, the wearable electronic device 100 may include one or moreaccelerometers that are configured to sense acceleration or changes inmotion. Additionally or alternatively, the wearable electronic device100 may include one or more gyroscopic sensors that are configured todetect changes in direction. In some cases, the one or more gyroscopicsensors may include a spinning mass that can be used to detect changesin angular velocity. Multiple motion-sensing elements may be used todetect motion along multiple directions or axes. The motion sensors mayalso be used to identify motion gestures. For example, the motionsensors can be used to detect an arm raise or the position of a user'sbody (within a predetermined confidence level of certainty). The one ormore motion-sensing elements may be used to determine an orientation ofthe device relative to a known or fixed datum. For example, the devicemay include a compass and/or global positioning system (GPS) that can beused to identify an absolute position. The one or more motion sensingelements may then measure deviation or movement with respect to theabsolute position to track movement of the device or the user wearingthe device. In some implementations, the one or more motion-sensingelements are used to detect gross movement of the device or user. Thegross movement may be used as a pedometer or activity meter, which maybe tracked over time and used to calculate a health metric or otherhealth-related information.

The housing 101 may also include one or more openings or orificescoupled to an acoustic module or speaker, which may include a speakerand/or a microphone subassembly. Although the housing 101 may includeone or more openings or orifices, the housing 101 may still besubstantially waterproof/water resistant and may be substantiallyimpermeable to liquids. For example, the opening or orifice in thehousing or enclosure may include a membrane or mesh that issubstantially impermeable to liquid ingress. Additionally oralternatively, the geometry of the opening or orifice and other internalfeatures of the housing 101 may be configured to reduce or impede theingress of liquid or moisture into the device 100. In one example, theopening is formed from one or more orifices that are offset with respectto an internal acoustic chamber or cavity, which may prevent a directpath from the outside of the housing 101 into the acoustic module.

The wearable electronic device 100 includes a device body 110 that maybe attached to a user's wrist using a band. In the present example, theband can include a first band strap 121 attached to a first receivingfeature 123 and a second band strap 122 attached to a second receivingfeature 124. In some embodiments, the first and second band straps 121,122 include a lug feature that is configured to attach to the first andsecond receiving features 123, 124, respectively. The free ends of theband straps 121, 122 may be connected with a clasp 125.

The band straps 121, 122 are formed from a flexible or compliantmaterial that may be specially configured for a particular application.The band straps 121, 122 may be formed from a variety of materials,including, for example, leather, woven textiles, or metallic meshmaterials. The material and construction of the band straps 121, 122 maydepend on the application. For example, the band straps 121, 122 may beformed from a woven textile material configured for exposure to impactand moisture typically associated with outdoor activities. In anotherexample, the band straps 121, 122 may be formed from a metallic meshmaterial that may be configured to have a fine finish and constructionthat may be more appropriate for professional or social activities.

Similarly, the clasp 125 may be configured for a particular applicationor to work with a particular style of band. For example, if the bandstraps 121, 122 are formed from a metallic mesh material, the clasp 125may include a magnetic clasp mechanism. In the present example, thedevice 100 is configured to be attached to the wrist of a user. However,in alternative embodiments, the device may be configured to be attachedto the arm, leg or other body part of the user.

The housing 101 includes one or more features for attaching the bandstraps 121, 122. In the present example, the housing 101 includes afirst receiving feature 123 and a second receiving feature 124 forattaching the first band strap 121 and the second band strap 122,respectively. In this example, the band straps 121, 122 include a lugportion that is adapted to mechanically engage with the receivingfeatures 123, 124. The first receiving feature 123 and second receivingfeature 124 may be integrally formed into the housing 101. Inalternative embodiments, the receiving features may be formed fromseparate parts and may be attached to the housing 101 duringmanufacturing. In some embodiments, the receiving features 123, 124 maybe configured to release the band straps 121, 122 from the device body110 (e.g., the housing 101). For example, one or both of the receivingfeatures 123, 124 may include a button or slide, which may be actuatedby the user to release a corresponding band strap 121 and 122. Oneadvantage of a releasable lug is that the user can swap between avariety of bands that may be specially configured for a particular usescenario. For example, some bands may be specially configured for sportor athletic activities and other bands may be configured for more formalor professional activities.

The wearable electronic device 100 may also include a rear cover 108located on the rear-facing surface of the housing 101 of the device body110. The rear cover 108 may improve the strength and/or scratchresistance of the surface of the wearable electronic device 100. Forexample, in some embodiments, the rear cover 108 may be formed from asapphire sheet, zirconia, or alumina material having superior scratchresistance and surface finish qualities. In some cases, the sapphirematerial has a hardness greater than 1 on the Mohs scale. In some cases,the sapphire material has a hardness of approximately 9 on the Mohsscale. Due to the superior strength of the sapphire material, a coverglass formed from a sapphire sheet may be very thin. For example, thethickness of a sapphire cover sheet may be less 300 microns thick. Insome cases, the thickness of a sapphire cover sheet may be less than 100microns thick. In some cases, the thickness of a sapphire cover sheetmay be less than 50 microns thick. In some embodiments, the rear cover108 is contoured in shape. For example, the rear cover 108 may have aconvex curved surface.

FIG. 1B illustrates a mobile electronic device 130 which may be acompanion device of the wearable electronic device 100 of FIG. 1A. Theillustrated mobile electronic device 130 includes a display 150 forproviding an operating system or application graphical interface. In oneembodiment the display 150 is a multi-function touchscreen displayconfigured to accept touch or electronic pen input from a user. Themobile electronic device 130 can include one or more processing units,one or more network or other communications interfaces, memory, and oneor more communication buses for interconnecting these components. Themobile electronic device 130 can execute an operating system thatfacilitates the execution of applications within memory of the mobileelectronic device 130. Application programs may include phone programs,e-mail programs, personal information management (PIM) programs, wordprocessing programs, spreadsheet programs, Internet browser programs,messaging programs, and the like. One or more of the applicationprograms can work on concert with application programs executing on thewearable electronic device 100. For example, launching an applicationprogram on the mobile electronic device 130 or interacting with theapplication program via the display 150 can launch an application orcause an action to be performed on the wearable electronic device 100.In one embodiment, interacting with an application on the mobileelectronic device 130 can cause an associated application on thewearable electronic device 100 to become a front-most application. Inembodiments described herein, the front-most application executing onthe wearable electronic device 100 can be granted enhanced executioncapabilities, even when the wearable electronic device 100 is in alower-power or screen-off state.

FIG. 2A-2B illustrate components of a wearable electronic device,according to an embodiment. FIG. 2A illustrates an external view of awearable electronic device 200. FIG. 2B depicts internal components ofthe wearable electronic device 200.

As shown in FIG. 2A, device 200 includes body 202. In some embodiments,device 200 can include some or all of the features described withrespect to device 100 of FIG. 1A. In some embodiments, device 200 hastouch-sensitive display screen (e.g., touchscreen 204). Alternatively,or in addition to touchscreen 204, device 200 has a display and atouch-sensitive surface. In some embodiments, touchscreen 204 (or thetouch-sensitive surface) may have one or more intensity sensors fordetecting intensity of contacts (e.g., touches) being applied. The oneor more intensity sensors of touchscreen 204 (or the touch-sensitivesurface) can provide output data that represents the intensity oftouches. The user interface of device 200 can respond to touches basedon their intensity, meaning that touches of different intensities caninvoke different user interface operations on device 200.

In some embodiments, device 200 has one or more input mechanisms 206 and208. Input mechanisms 206 and 208, if included, can be physical.Examples of physical input mechanisms include push buttons and rotatablemechanisms. In some embodiments, device 200 has one or more attachmentmechanisms. Such attachment mechanisms, if included, can permitattachment of device 200 with, for example, hats, eyewear, earrings,necklaces, shirts, jackets, bracelets, watch straps, chains, trousers,belts, shoes, purses, backpacks, and so forth. These attachmentmechanisms may permit device 200 to be worn by a user.

As shown in FIG. 2B device 200 has bus 212 that operatively couples I/Osection 214 with one or more computer processors 216 and memory 218. Theone or more processors 216 can include a low power system processor orprocessor core and a higher-powered application processor or processorcore. The one or more computer processors 216 can also include a secureprocessor, such as but not limited to a secure enclave processor (SEP).The one or more computer processors 216 and I/O section 214 can beconnected to a touchscreen display 204, which can have touch-sensitivecomponent 222 and, optionally, touch-intensity sensitive component 224.In addition, I/O section 214 can be connected with communication unit230 for receiving application and operating system data, using Wi-Fi,Bluetooth, near field communication (NFC), cellular, and/or otherwireless communication techniques.

Device 200 can include input mechanisms 206 and/or 208. Input mechanism206 may be a rotatable input device or a depressible and rotatable inputdevice, for example. Input mechanism 208 may be a button, in someexamples. Input mechanism 208 may be a microphone, in some examples.Device 200 can include various sensors, such as GPS sensor 232,accelerometer 234, directional sensor 240 (e.g., compass), gyroscope236, motion sensor 238, and/or a combination thereof, all of which canbe operatively connected to I/O section 214.

Memory 218 of wearable electronic device 200 can be a non-transitorycomputer-readable storage medium, for storing computer-executableinstructions, which, when executed by one or more computer processors216, for example, can cause the computer processors to perform thetechniques described herein. The computer-executable instructions canalso be stored and/or transported within any non-transitorycomputer-readable storage medium for use by or in connection with aninstruction execution system, apparatus, or device, such as acomputer-based system, processor-containing system, or other system thatcan fetch the instructions from the instruction execution system,apparatus, or device and execute the instructions. For purposes of thisdocument, a “non-transitory computer-readable storage medium” can be anymedium that can tangibly contain or store computer-executableinstructions for use by or in connection with the instruction executionsystem, apparatus, or device. Device 200 is not limited to thecomponents and configuration of FIG. 2B, but can include other oradditional components in multiple configurations.

Wearable Device Configuration

FIG. 3A shows an exemplary welcome screen 306 that a device 300 candisplay on its display. Device 300 may transition from displaying aboot-up screen to displaying welcome screen 306 after at least a portionof the boot-up process has completed. Welcome screen 306 may include awelcome message 308 containing any desired text, image, icon, animation,video, or the like. Welcome screen 306 may also include an affordance307 showing the text “NEXT”. As used herein, the term “affordance”refers to a user-interactive graphical user interface object that may bedisplayed on the display screen of device 300. For example, an image(e.g., icon), a button, and text (e.g., hyperlink) may each constitutean affordance. In some embodiments, a user may select an affordance viaa mouse gesture (e.g., hover, click, double-click, drag). In someembodiments, a user may select an affordance via a touch-based gesture(e.g., tap, swipe, flick, long touch).

A user may select the displayed affordance 307 to instruct device 300 tocontinue to the next step or screen in the initialization process. Forexample, in response to a tap gesture on affordance 307, electronicdevice 300 may continue the initialization process. Alternatively, auser may cause the electronic device 300 to transition to the nextscreen or continue the initialization process by a swipe gesture fromright to left on the touch-sensitive display or using the rotatableinput mechanism (e.g., input mechanism 206).

In one embodiment, electronic device 300 continues the initializationprocess by transitioning the display to an optional personalized messagescreen. A personalized message screen may include a personalized messagecontaining any desired text, image, icon, animation, video, or the like.

FIG. 3B shows an exemplary instruction screen 310 that device 300 candisplay on its display is described. The instruction screen 310 mayinclude an image, icon, animation, video, text, or the like that promptsthe user to take an action. For example, instruction screen 310 includestext 302 instructing the user to position the device. In one embodiment,a user may be instructed to attach the electronic device 300 to a bodypart such as one of the user's wrist.

Instruction screen 310 also includes affordances 304 and 305. Affordance304 has an icon including the text “NEXT”. Selecting affordance 304 mayinstruct device 300 to continue to the next step or screen. That is, inresponse to a tap gesture on affordance 304, electronic device 300continues the setup process. A user may select affordance 304 toindicate that the user has complied or intends to comply with theinstruction text 302. In an alternate embodiment, the device detects,using one or more biometric sensors, that the user has positioned thedevice and advances to screen 320 of FIG. 3C without the need for usercontacting affordance 304. Affordance 305 includes an icon of an arrowhead pointing to the left. A user may select affordance 305 to causedevice 300 to display the previous screen. That is, in response to a tapgesture on affordance 305, electronic device 300 returns to a previousstep or displays a screen displayed prior to screen 310.

FIG. 3C shows another exemplary instruction screen 320 that device 300can display on its display. Instruction screen 320 may be displayed toprompt a user to take an action that will initiate pairing of theelectronic device 300 with an external electronic device, such as themobile electronic device 130 of FIG. 1B.

The external device may operate in a pairing mode that allows it to pairwith another device, such as device 300. As used herein, pairing moderefers to an operating mode in which two devices attempt to register oneanother for future wireless communications. For example, the process ofinitially connecting two Bluetooth-enabled devices involves enteringinto pairing mode on the devices.

In some embodiments, wireless communication, for purposes of pairing,occurs over a peer-to-peer wireless communication protocol such asBluetooth and/or Bluetooth Low Energy (BTLE). In some embodiments,wireless communication for purposes of pairing functionality utilizesmore than one wireless communication protocol. For example, Wi-Fi may beused in addition to BTLE. In these embodiments, an initial communicationbetween two devices may occur over a lower powered protocol, such asBTLE, even if the protocol yields a slower data transfer speed.Subsequent communications may occur over a secondary network that isrelatively faster, such as Wi-Fi.

The pairing mode of the external device may be invoked by running asoftware program. The software program may be part of an operatingsystem or an application program. In one embodiment, the external devicedisplays an affordance (e.g., a selectable icon) representing anapplication for pairing the external device with another device (e.g.,device 300). Selecting the application affordance may launch theapplication and invoke the pairing mode.

In some embodiments, the application affordance is displayed on theexternal device only when device 300 is within communication range ofthe external device. For example, device 300 may wirelessly transmitdata that represents a request to pair or that indicates it is capableof pairing with another device. If the external device is not withincommunication range, the affordance is not displayed. However, if theexternal device receives the data, and therefore is within communicationrange of device 300, then the application affordance is displayed.

In another embodiment, when the external device is not within range, theapplication affordance is displayed but in a manner that indicates thatthe application cannot be launched. For example, the applicationaffordance may appear greyed-out or semi-transparent to indicate thatthe application cannot be launched. When the external device comeswithin communication range of device 300, the visual appearance of theapplication affordance may be changed to indicate that the applicationcan be invoked.

Instruction screen 320 includes text 312 instructing the user to launchan application on the user's phone to pair the device 300. In oneembodiment, the application is launched by executing a tap gesture on anaffordance associated with the application displayed on the user'sphone. The application may invoke a wireless communications pairing modefor pairing the device 300 with the user's phone.

Instruction screen 320 also includes affordances 314 and 315. Affordance314 has an icon including the text “NEXT”. Selecting affordance 314 mayinstruct device 300 to continue to the next step or screen. That is, inresponse to a tap gesture on affordance 314, electronic device 300continues the setup process. Accordingly, a user may select affordance314 to indicate that the user has complied or intends to comply with theinstruction text 312. That is, selecting affordance 314 may indicatethat the user has or intends to launch an application program forpairing the phone with the electronic device. Affordance 315 includes anicon of an arrow head pointing to the left. A user may select affordance315 to cause device 300 to display the previous screen. That is, inresponse to a tap gesture on affordance 315, electronic device 300returns to a previous step or displays a screen displayed prior toscreen 320.

FIG. 4A shows an additional instruction screen 400 that device 300 candisplay on its display. Instruction screen 400 may be displayed afterscreen 320 of FIG. 3C to facilitate setup of the device 300 via anexternal device 450. Instruction screen 400 includes text 402instructing the user to take a picture of instruction screen 400 with acamera on the external device 450 or to otherwise position device 300such that device 300 is visible to the camera of the external device450.

Instruction screen 400 also includes an image containing a pattern 404.The displayed image may include wavelengths that are visible to thehuman eye. The image may also include wavelengths that are invisible tothe human eye but can be produced by the display on device 300 anddetected by the camera of external device 450. In one embodiment, theinstruction screen 400 may display an invisible image containing thepattern 404 along with a visible image. The visible image may beaesthetically appealing to the user, while the invisible image maycontain information that can be and/or is easier to recognize and/orprocess by a processor facilitating the pairing.

The pattern 404 may be used to identify or authenticate the device 300.In one embodiment, the pattern comprises identifying information of thedevice 300. Identifying information may include any design, symbol,pattern, sequence, indication, or the like that identifies the device300, such as a quick response code or a bar code. The identifyinginformation may be unique to device 300 or may generally indicate thetype of device.

FIG. 4B shows an external device 450 that may be paired or associatedwith device 300. Device 300 can be paired with the external device 450or can be configured for a user other than the user of the externaldevice 450. When device 300 is configured for another user, device 300can be configured as a satellite device that is not directly paired withbut may be at least partially managed by the external device 450. Forexample, device 300 can be configured as a device to be worn by a childor other minor-aged relative of the user associated with the externaldevice 450. Device 300 may also be configured for use by an adult memberof a family of accounts that is associated with the external device 450.Device 300 may also be configured for an employee associated withexternal device 450, where external device 450 is associated with anenterprise management account.

In one embodiment, external device 450 is a phone with a camera that maybe used to take a picture of device 300 while instruction screen 400 isdisplayed. Using the camera of external device 450, a user may obtain animage containing a visual representation of the device 300 including thepattern 404 displayed on the screen of electronic device 300. Externaldevice 450 displaying an example of an obtained image 452 of electronicdevice 300. Image 452 shows electronic device 300 displaying instructionscreen 400 with the pattern 404.

External device 450 may process the obtained image 452 to extract theidentifying information contained in the pattern 404. External device450 may then use the extracted identifying information to authenticatethe device 300 for pairing. In one embodiment, the electronic device 300transmits data via wireless communication. The data may includeinformation identifying the electronic device 300. The data may alsoinclude information representative of the pattern displayed on screen400. Electronic device 300 may send the data in response to anindication that the user has launched or intends to launch anapplication program for pairing the user's phone with device 300 (e.g.,selecting affordance 314 on screen 310 as described above).

The external device 450 may receive the data transmitted by electronicdevice 300 and determine whether the identifying information in thereceived data corresponds with the identifying information in the imageof the pattern obtained by the camera. If the external device 450determines that the received data corresponds with the identifyinginformation in pattern 404, then the external device 450 may registerdevice 300 as an associated device. Alternatively, if the externaldevice 450 determines that the received data does not correspond withthe identifying information in pattern 404, then the external device 450may not register device 300 as a paired or associated device.

FIG. 4C shows an exemplary instruction screen 460 that device 300 candisplay on its display. Instruction screen 460 includes text 462instructing the user to tap the user's phone with the device 300 toinitiate setup of the device. In one embodiment, external device 450 anddevice 300 can be brought into close contact (e.g., via a tap) to enablean exchange of data via an NFC connection. The data exchanged caninclude identifying information of device 300 and keys or passcodes thatcan be used to establish a secure wireless connection via, for example,Bluetooth or Wi-Fi. In response to receiving the data transmitted by thedevice 300 and the external device 450 may register device 300 as apaired device or set up device 300 as a standalone or satellite device.The data exchange facilitated via NFC can be done in addition to as analternative to the image-based data exchange shown in FIG. 4A-4B.

Once the device 300 has connected with the external device 450, thedevice 300 and/or the external device 450 may provide an indication thatthe devices have paired. The indication may include an aural indication,such as a chime, ping, beep, tune, or the like. The indication may also,or alternatively, include a haptic indication, such as tactile feedbackin the form of buzzing, vibrating, or pulsing. In one embodiment, eachdevice provides an indication simultaneously with the other. In anotherembodiment, the devices provide indications one after the other in aback-and-forth manner which indicates that the two devices are in sync.

FIG. 5A-5D illustrate user interfaces to configure an accessory deviceas a satellite accessory. FIG. 5A shows a user interface to enableconfiguration of an accessory device for another user. FIG. 5B shows auser interface to facilitate cellular provisioning for a cellularenabled wireless accessory. FIG. 5C-5D show user interfaces foradditional accessory configuration, including contact configuration andhealth sharing information. The configured accessory device can bedevice 300 as described above.

As shown in FIG. 5A, an external device 450 can display an accessoryconfiguration user interface 501 after initiating setup for an accessorydevice as described above. The accessory configuration user interface501 can display a prompt 502 to ask a user whether the wearableaccessory device is to be configured for the current user (interfaceelement 503) of the external device or is to be configured for anotheruser (interface element 504). Where the accessory device is to beconfigured for another user, the accessory device can be configured as astandalone device that operates without a companion device. In someembodiments, a standalone wearable accessory can be a satelliteaccessory that is indirectly managed by the external device 450 withoutbeing persistently paired with the external device 450.

Upon selection of an option to configure an accessory device for anotheruser (interface element 504), the accessory configuration user interface501 can display a set of option screens to enable configuration optionsto enable configuration of the accessory for another user 512. In oneembodiment, the accessory device can be configured as a satelliteaccessory associated with a user account within a family or group ofuser accounts. In a family of accounts, data associated with the variousaccounts within the family can be shared within the family of accounts.Accounts can be designated as parent or child accounts and one or moreparent accounts can be configured as guardian or management accounts forthe child accounts. Abilities and behaviors of child accounts can varybased on the age of the user associated with the account. The accessoryconfiguration user interface 501 can enable a satellite accessory to beconfigured for an existing family account (interface element 514) or tocreate a new user account for the family (interface element 516) toassociated with the satellite accessory. Such techniques may also beapplied for an adult account within a family or for an employee accountassociated with a group of enterprise accounts.

In one embodiment a communication unit of a wearable electronic device(e.g., communication unit 230 of wearable electronic device 200) can beconfigured with a cellular baseband processor and radio to enablewireless voice and/or data network connectivity. When cellularprovisioning is to be performed, the satellite accessory device isconfigured with a subscription profile for one or more network operatorsto enable the satellite accessory to communicate on a network of thenetwork operator. If the accessory device were to be paired with acompanion device, the companion device can be used to perform cellularprovisioning. For a satellite accessory that is not to be persistentlypaired with a companion device, cellular provisioning for the satelliteaccessory can be performed during setup by the external device 450.

As shown in FIG. 5B, an external device 450 can be used to facilitatecellular provisioning for an accessory device that is to be configuredas a satellite device. Information text 522 can be presented on theaccessory configuration user interface 501 that indicates that the UI isto configure the accessory for another user. A prompt (interface element524) can be displayed to prompt the user to indicate whether cellularprovisioning for the satellite device is to be performed during setup orat a later time. An interface element 525 can be presented to allow auser to indicate that cellular provisioning is to be performed duringsetup. An interface element 526 can also be presented to allow a user toindicate that cellular provisioning is not to be performed or is to beperformed at a later time. If cellular provisioning is to be performedat a later time, provisioning can be performed via a peer-to-peer setup,as described further below with respect to FIG. 9A and FIG. 13A-13C. Inaddition to cellular provisioning, the accessory configuration userinterface can also be used to enable connectivity of the satellitedevice to wireless access points by providing access point passwordinformation to known by the external device 450 to the satellite device.

As shown in FIG. 5C, the external device 450 can display an accessoryconfiguration user interface 501 to enable additional configuration fora satellite accessory. The accessory configuration user interface 501can display text 532 to indicate to the user that additionalconfiguration items after initial setup can be performed. Theseadditional configuration items can include optional configurationelements, the setup of which can be front-loaded to the initialconfiguration.

In some embodiments, independent contacts management on a satelliteaccessory may not be enabled (or may be disabled). In one embodiment,independent contacts management may be disabled when the satelliteaccessory is associated with a user below a threshold age. In suchembodiments, the accessory configuration user interface 501 can presenta prompt 534 to enable the configuration of contacts for a satelliteaccessory during setup. Contact configuration can be bypassed or delayed(interface element 536) or performed (interface element 535) duringsetup. When contact configuration is performed, selected contacts thatare stored on or associated with the external device 450 can besynchronized with the satellite accessory.

The accessory configuration user interface 501 can also present a prompt537 to enable (538) or disable (539) an option to restrict the contactsthat the satellite accessory can communicate with to a whitelist ofcontacts. When such restriction is enabled, incoming, outgoing, or bothincoming and outgoing communication to and from the satellite accessorycan be performed only a pre-selected whitelist of contacts. For example,a satellite watch for a child user can be configured that can make oraccept incoming voice or text calls to parents, other family members, orother contacts that have been added to the whitelist of contacts by aparent or guardian account. When whitelist restrictions are enabled,contacts to and from emergency services may additionally be allowed.

As shown in FIG. 5D, the accessory configuration user interface 501 onthe external device 450 can enable additional confirmation of optionalsettings, including presenting a prompt 544 to configure a medical IDfor the accessory. Configuration of the medical ID can be bypassed(interface element 546) or performed during setup (interface element545). The medical ID for the accessory can include emergency medicalinformation for the user of the satellite accessory, as well asrelatives and emergency contacts. Medical ID information stored on asatellite accessory can be accessed even when the accessory is locked.

In one embodiment, the accessory configuration user interface 501 caninclude a prompt 547 to enable the configuration of health sharinginformation. Health information sensed by sensors on the accessory canbe aggregated by a health monitoring application that executes on thesatellite accessory. During setup, health sharing information can beconfigured (interface element 548) or bypassed (interface element 549).If health sharing is to be configured, data from the health monitoringapplication can be shared with the parent or guardian account associatedwith the satellite accessory.

FIG. 6A-6B illustrate methods to configure an accessory device as asatellite accessory. FIG. 6A illustrates a method 600 that includesoperations at an external device to configure an accessory device foruse by an account different than the active account of the externaldevice. FIG. 6B illustrates a method 610 that includes operations at acomputing device of a child account to approve management of an existingaccount if the existing account is to be associated with a satelliteaccessory.

As shown in FIG. 6A, method 600 includes invoking a wirelessconfiguration mode for configuring an accessory device via a mobileelectronic device (block 601). The wireless communications configurationmode can be invoked as illustrated above in FIG. 3A-3C and/or FIG.4A-4C. During wireless configuration, the external device can obtainidentifying information for the accessory device while demonstratingproximity with accessory device (block 602). Demonstration of proximitybetween the mobile electronic device (e.g., external device 450) and theaccessory device (block 300) may be required as a security measure todemonstrate that the user of the mobile electronic device is inpossession of the accessory device to be configured. Proximity can beconfigured via an image capture or NFC tap, as described above in FIG.4A-4C.

Method 600 additionally includes an operation on the mobile electronicdevice to receive data from the accessory device via a connectionestablished via a wireless network interface on the mobile electronicdevice (block 604). The connection can be established at least in partusing information obtained from the accessory device, such as a wirelessidentifier for the accessory device. The mobile electronic device canthen determine whether data received from the accessory devicecorresponds with the identifying information for the accessory device(block 606). For example, data received via an image capture or NFC tapcan be verified with information that is received via the wirelessconnection with the accessory device. In response to a determinationthat the data received from the external device corresponds with theidentifying information, the mobile electronic device can configure theaccessory device for use with an account within a group of associatedaccounts (block 608). Configuring the accessory device can includepairing the accessory device to the mobile electronic device orassociating the accessory device with an account of another user withina family of user accounts. For example, the accessory device can beconfigured as a satellite accessory (e.g., satellite watch) for a childuser that is managed by an account of a parent.

While satellite accessories are generally for use by users that do nothave a smartphone device to use as a paired companion device for thesatellite accessory, such users may have accounts associated withnon-smartphone devices, such as a tablet, laptop, or desktop computer.When a satellite accessory is associated with an existing account for achild user that is above a threshold age or within a pre-determined agerange, the child user may be informed that existing account data may bemanaged by a parent or guardian user via a management device associatedwith the parent or guardian user. In one embodiment, depending on theconfiguration and/or age of the child user, the child user may beprompted to approve management of pre-existing account data. The promptcan be presented on any device that is a trusted device of the childuser.

As shown in FIG. 6B, method 610 includes operations at a computingdevice of a child account to approve management of an existing accountif the existing account is to be associated with a satellite accessory.In one embodiment a setup and/or configuration device that is used tosetup or configure a satellite accessory device (e.g., external device450 while configuring device 300) can receive a request to associate afirst account in a family of accounts with a satellite accessory (block612). The configuration device can then determine an age of a user ofthe first account during setup (block 614), for example, by requesting abirth date of a user associated with the account or performing abirth-date lookup within account information of the user. Theconfiguration device, or a server in communication with theconfiguration device, can determine whether the user associated with thefirst account is within a pre-determined age range (block 615). Forexample, if the account is associated with a user between the ages of 13years old and 18 years old, method 610 can trigger an operation todisplay a prompt on an electronic device (e.g., tablet, laptop, etc.)associated with the first account to approve management of existingaccount data by a second account in a family of accounts (block 616).Upon receipt of approval from the electronic device associated with thefirst account (block 617), the account server associated with the firstaccount can enable management of the first account by the second account(block 618).

In some embodiments, approval is not requested if the first account thatis to be used with the satellite accessory is associated with a userunder a threshold age. For example, for some users an informativemessage may be displayed. In some embodiments, for users within apre-determined age range, if approval to manage the user's account isnot granted, some management ability of the second account may belimited. In one embodiment, such limits may be overridden when thesecond account is associated with a parent or guardian account withinthe family. In one embodiment, once a user reaches a threshold range(e.g., 18 years old), the user may opt-out of a subset of the managementfunctionality.

Authenticating and Creating an Account on Behalf of Another User

FIG. 7A-7B illustrate sequence diagrams to create and trust an accountfor use with a satellite accessory. FIG. 7A illustrates a sequencediagram to create and trust a new account that is to be associated witha satellite device. FIG. 7B illustrates a sequence diagram toauthenticate and trust a pre-existing account that is to be associatedwith a satellite device. As illustrated and described in FIG. 7A-7B, aparent device 710 can be used to create or associate an account for usewith a child device 720. The parent device 710 can be, for example, anexternal device 450 as described herein, while the child device 720 canbe version of device 300 that is configured for use as a satellitedevice. In some embodiments, versions of the illustration operations canbe used to allow delegation of account creation for use with any deviceand is not limited to child or satellite devices. Where parent and childin a family of accounts are described, similar techniques can also beapplied to an enterprise account of a user that is managed at least inpart by an enterprise management device.

As shown in FIG. 7A, the parent device 710 is first taken through atwo-factor authentication (2FA) upgrade process (715) if the accountassociated with the parent device 710 is not already configured to use2FA. In one embodiment, two-factor authentication is an extra layer ofsecurity that can be applied to a user account that uses additionalauthentication methods on top of password authentication. Whentwo-factor authentication is enabled for an account, the account isaccessible only from trusted devices. When an untrusted device attemptsto access an account, a prompt is presented on trusted devices of theuser that displays a passcode, passphrase, or other information that isto be entered on the untrusted device before the device becomes trusted.The two-factor authentication upgrade process can be performed inconjunction with an ID server 740 that manages a cloud servicesidentifier that is associated with a cloud services server 760. Theupgrade to 2FA will configure the ID server 740 to use 2FA whenever auser attempts to log to a service associated with the cloud servicesserver 760 from an untrusted or unrecognized device. Success or failureof this upgrade process is communicated (742) back to the parent device710. If the account associated with the parent device is alreadyconfigured for 2FA, the upgrade process can be bypassed.

The parent device 710 can then perform an operation (716) to initiate awireless pairing with the child device 720. The paring operation can beenabled using techniques described above with respect to FIG. 3A-3C andFIG. 4A-4C. This wireless paring is a temporary pairing for use inconfiguring the child device 720 and will not be maintained persistentlyonce configuration is complete. Upon pairing with the parent device 710,the child device 720 can perform an operation (721) to create and cachea device passcode. The child device 720 can prompt the user of thedevice to enter a passcode, which can be a numeric or alphanumericpasscode or PIN, which can also be subsequently used to unlock the childdevice 720 from a locked state. On the child device 720 the passcode canalso be used as a substitute for entering username and passwordinformation for a cloud services account on the user interface of thechild device 720, as the child device may be, for example, a smart watchhaving a small display and input surface. The passcode can also be usedor converted into a peer-to-peer encryption secret to encrypt datachannels between devices associated with the account that is to beconfigured for the child device 720. The child device can cache thepasscode that is created for later use.

An encrypted channel can then be set up between the child device and theparent device to exchange machine information. This encrypted channel iscreated via an authentication framework 730 on each of the parent deviceand the child device. Via the authentication framework 730, the childdevice can request machine information from the parent device and theparent device can request machine information from the child device.

Software logic on the child device 720 can connect with theauthentication framework 730 on the child device 720. The child device720 can fetch machine information data (726) for the parent device 710via the authentication framework 730, which will return the requestedmachine information data (731). A similar process can occur on theparent device 710, which can fetch and receive machine information forthe child device 720. Thus, the respective authentication frameworks 730enable the exchange of machine information data (727) between the parentdevice 710 and the child device 720. The machine information data forthe parent device 710 and the child device 720 can include uniquehardware identifiers for each device. Various keys and identifiers canbe generated based on the unique hardware identifiers that enable theestablishment of secure communication channels between the parent device710 and the child device 720. The machine info data, in one embodiment,can also include data that can be used to attest to the validity andauthenticity of the parent device 710 and the child device 720.

The parent device 710 can then invoke an account creation operation(717), which can include an operation to create an implicit family orgroup (770) if the account associated with the parent device is notassociated with an account family or group. During this process, anaccount for the child device is created via the parent device. Theaccount for the child device is created on behalf of the child device720 by the parent device 710 to make the account creation process easierand more convenient, as the child device 720 may have a display or inputsurface that is limited in size.

During the account/family creation process, the parent device 710 cancommunicate with the ID server 740 to initiate an account creation flow(771). The account creation flow can be performed via a remote userinterface (RUI) that is provided by the ID server 740 and presentedfully on the parent device 710. The account creation flow includesvarious interactions such as collecting information about child account(i.e. age, name, etc.) as well as verification via a configured secondfactor for the account to be created and/or the account that is beingused to create the new account. During the creation flow, accountcredentials (e.g., username, password, etc.) are requested by the IDserver 740 via the RUI presented on the parent device 710. At the end ofthe creation flow, the child device is considered a trusted device. TheID server 740 can then return the credentials (772) supplied for theaccount the parent device 710.

The parent device 710 can then connect with the cloud services server760 to configure family sharing (773) for any data that is to be sharedbetween the accounts, such as but not limited to shared calendars,shared application, book, or media purchase information, or shared medialibraries. The cloud services server 760 can report (774) success orfailure for each share that is attempted to be configured.

The parent device 710 can then send a creation response (775) withcredentials for the new account to the child device 720. The childdevice 720 can then authenticate (776) with the authentication framework730 on the child device. In one embodiment the authentication processmakes use of authentication based on a password authenticated keyagreement protocol (PAKE). Once the child device 720 is authenticatedwith its instance of the authentication framework 730, the child device720 can perform operations to sign into cloud services (724) that areprovided by the cloud services server 760. In one embodiment, the cloudservices are those associated with iCloud, as provided by Apple Inc. ofCupertino Calif., but are not limited to any specific cloud or remoteservice provider.

The child device 720 can also enable the use of cloud data protectionservices (CDP 750) via the cached device passcode (777) or acryptographic secret derived using the device passcode. Once CDPservices are enabled using the cached device passcode (or a secretderived using the device passcode), the child device 720 can beconfigured to securely access protected cloud data using the devicepasscode instead of account credentials that were used to create theaccount for the child device 720. Access to CDP services via the devicepasscode may be enabled by creating a cryptographic association betweenthe cached device passcode or a secret derived therefrom, and thecredentials associated with the cloud services account that is assignedto the child device 720. In one embodiment, the cached device passcodeor derived secret can be used to decrypt or unlock encrypted credentialsthat are stored for the cloud services account. In one embodiment, thecached device passcode or derived secret can be used to unlock anauthentication token that may be provided to a server associated withthe CDP 750. Occasional entry of the full account password may berequired, for example, if the wrong device passcode is entered. Periodicentry of the full account password, or complete account credentials, mayalso be requested.

FIG. 7B illustrates operations to associate a pre-existing accountwithin a family or group of accounts with a satellite accessory device(e.g., child device 720), for example, in response to the selection ofinterface element 516 of FIG. 5A. The parent device 710 can perform anoperation to initiate device pairing (711) with the child device 720.The paring operation can be enabled using techniques described abovewith respect to FIG. 3A-3C and FIG. 4A-4C. As in FIG. 7A, this wirelessparing is a temporary pairing for use in configuring the child device720 and will not be maintained persistently once configuration iscomplete. Upon pairing with the parent device 710, the child device 720can perform an operation (721) to create and cache a device passcode.The child device 720 can prompt the user of the device to enter apasscode, which can be a numeric or alphanumeric passcode or PIN, whichcan also be subsequently used to unlock the child device 720 from alocked state. On the child device 720 the passcode can also be used as asubstitute for entering username and password information for a cloudservices account on the user interface of the child device 720. In oneembodiment, the child device 720 can use the device passcode to generatea cryptographic secret. The generated secret can be cached (722) withincloud data protection services (CDP 750) on the child device 720 for useafter the child device 720 has been trusted.

In one embodiment, the parent device 710 and the child device 720 canexchange machine information data (727) via an authentication framework730 on each device, as described above in FIG. 7A. Additionally, aprompt (712) for a username and password, or other credentials, can bedisplayed on the parent device 710 on behalf of the child device 720.The username and password for the account to use on the child device 720is entered on the parent device 710 due to the ease of use of the parentdevice 710 for credential entry relative to the child device 720. Forexample, the parent device 710 may have a larger touch screen displaythan the child device 720, with an associated larger on-screen inputmechanism. Once the username and password are entered on the parentdevice 710, 2FA data may also be sent to the parent device 710 ordisplayed on another computing device associated with the user accounton the parent device 710. The received password and 2FA authorizationdata (713) is then transmitted to the ID server 740 that manages a cloudservices identifiers for the accounts of the parent device 710 and childdevice 720. In one embodiment, machine information data for the parentdevice 710 and/or child device 720 is also sent to the ID server 740 toidentify the child device that is to be trusted.

The ID server 740 will return (741) an authentication response and, ifthe authentication was successful, an indication that the child device720 is now trusted by the ID server 740. The parent device 710 can thensend credentials (714) to the child device 720 that can be used toauthorize the child device with the authentication framework 730. Thecredentials can be used by the child device 720 to authorize (723) withthe authentication framework 730. The child device 720 can performoperations to sign into cloud services (724).

Additionally, authorization (751) with cloud data protection services(CDP 750) can be performed to enable the child device 720 to accessprotected data using the cache device passcode of the child device 720,or the cryptographic secret derived from the device passcode. Onceauthentication to CDP 750 is successfully completed, the user of thechild device 720 can access protected cloud data without requiring theuser to re-enter the credentials for the account each time protectedcloud services are to be accessed, although occasional entry of the fullaccount password may be required, for example, if the wrong devicepasscode is entered. Periodic entry of the full account password, orcomplete account credentials, may also be requested. CDP 750 can report(752) success or failure of the authentication attempt using the cacheddevice passcode or secret to the configuration software on the childdevice 720, which can relay (725) the report of success or failure tothe parent device 710.

User Interfaces to Facilitate Use as a Primary Device

FIG. 8A-8F illustrate exemplary user interfaces to enable use of awearable accessory device as a primary device. As shown in FIG. 8A-8F, adevice 800, such as a smartwatch, when configured for use as a primarydevice that is not persistently paired with a companion device, caninclude a variety applications having user interfaces that are tailoredfor use with a small display and touchscreen. Device 800 can be avariant of device 200 or device 300 as described above, and can includea body 802, touchscreen display 804, and one or more inputs 808.Exemplary applications that can execute on device 800 include but arenot limited to media library applications, calendar applications,contact management applications, messenger applications, and settingsapplications. In some instances, input into applications that execute onthe device 800 can be facilitated via remote text input from an externaldevice. Additionally, when used as a primary device for a user, device800 can provide a location for the user for location sharing services.In one embodiment, device 800 includes a standalone application storethat enables additional applications to be downloaded to device 800.While a variety of user interfaces are described herein, some wearableelectronic devices may operate without a display or a graphical userinterface, or may present a user interface remotely on a separatedevice.

FIG. 8A illustrates a user interface 810 for an exemplary mediaapplication. The user interface 810 for the media application can bedisplayed on the touchscreen display 804 of device 800. User interface810 can present a user interface element 812 that displays informationsuch as album art or information with respect to the currently playingmedia. User interface 810 can also include media controls 814 to enablea user to control (e.g., pause, resume) media playback or change to aprevious or next media item within an album or playlist.

FIG. 8B illustrates a user interface 820 for an exemplary calendarapplication. Multiple calendar views can be presented, including a monthview 822, or a one-week/one-day view (not shown). The calendarapplication can enable management of private and shared calendar data ina manner similar to the calendar application of a smartphone. Userinterface 820 can also show calendar entries that are shared with otherusers, including calendar entries for a family calendar that is sharedwith other user accounts within a family of associated user accounts.

FIG. 8C illustrates a user interface 830 for an exemplary contactsapplication. User interface 830 can display an interface element 832that presents information for a contact entry in a contacts database.The contacts database can be stored partially on device 800 andpartially within an online contacts database for an account that islogged in to the device. An interface element 834 can also be presentedto enable a user to add contacts. A similar interface element can alsoenable the removal of contacts.

Where device 800 is configured as a satellite device for a child user,user interface 830 may not allow the independent addition of contacts.Instead, interface element 834 may trigger an authorization request to amanagement device, such as a smartphone device of a user that isconfigured as a parent or guardian within the family of user accounts ora manager of a group of enterprise accounts. Device 800 may enter newcontact information manually and request authorization to add thatcontact to a contacts database. In one embodiment, device 800 canreceive contact information from a device associated with a contact tobe added, for example, via messenger application or via a short rangewireless connection (e.g., NFC). The user of the device 800 can then addor request addition of the contact information via interface element834.

FIG. 8D illustrates a user interface 840 for an exemplary messengerapplication. User interface 840 for the messenger application caninclude a user interface region 842 in which received messages aredisplayed and an additional user interface region 844 in which messagesto be sent are displayed. Messages to be sent can be entered via akeyboard displayed on the touchscreen display 804 of device 800, viavoice input, or via remote input from another display device. Messagessent and received from device 800 can also be stored within cloudstorage associated with the device.

FIG. 8E illustrates a user interface 850 for a settings utility for anaccessory device that is configured as primary device. The userinterface 850 can include, for example, text 851 to indicate that cloudbackup options can be configured on the device 800. In one embodiment,interface elements can be displayed to enable a user to configure backupoptions for locally stored media (interface element 852), messages(interface element 853), and/or health data (interface element 854). Inone embodiment, messages may optionally be continually backed up via acloud-based message delivery system that facilitates the receipt of themessages by the device 800.

In one embodiment, device 800 can be used to share a location for a userwith family members or other users for which sharing has been enabled.The user interface 850 can include, for example, text 855 to indicatethat location sharing can be configured for the device 800. A userinterface element 856 can be presented to enable a user of device 800 toindicate whether the location of device 800 should be shared as thedefinitive location of the user. In one embodiment, device 800 can alsoinclude an application or user interface that enables the user of thedevice to see the location of other users (e.g., friends, family,co-workers, etc.) that are sharing their location with the user ofdevice 800.

FIG. 8F illustrates a system in which text input for device 800 can beprovided by a remote text input device 870, such as a tablet computer.In one embodiment a laptop or desktop computer can also be used as aremote input device. Remote text input can be enabled, for example, whencredentials (e.g., username/password) are to be entered into device 800and the device is located near an eligible potential remote text inputdevice. A remotely input text region 860 of the user interface of device800 can display text that is received from the remote text input device870. In one embodiment, in addition to a software-based keyboard 872that can be displayed on the user interface of the remote text inputdevice 870, the user interface can also display a view 871 of the remotetext that has been input by the remote text input device 870, forexample if device 800 is a smartwatch or another device that may bedifficult to view while in the act of entering remote text.

Synchronization of Data between a Satellite and Management Device

FIG. 9A-9B illustrate systems to synchronize data between a satelliteaccessory and a management device. Various data synchronizationtechniques can be applied in various embodiments. In some embodiments,data synchronization techniques can be applied at least in part asdescribed in U.S. Provisional Patent Application No. 62/679,854, havingthe title “Data Synchronization Across Multiple Devices,” to Joao PedroDe Almeida Forjaz de Lacerda, filed Jun. 3, 2018, which is incorporatedby reference in its entirety to the extent that it is consistent withthis disclosure.

As shown in FIG. 9A, a satellite wearable device 900 can be initiallyconfigured by a parent device 950 via a peer-to-peer wireless connection930. Additionally, subsequent configuration of the satellite wearabledevice 900 can also be performed on a peer-to-peer basis. Remoteconfiguration and shared data synchronization 940 can also be performedvia a cloud communication channel established via a set of cloud servers920. At least a subset of data 902 of a child user of the satellitewearable device 900 can be managed via a configuration application 952on the parent device 950 using either a remote or peer-to-peercommunication link. The data 902 of the satellite wearable device 900can include shared data (e.g., calendar data, contacts, etc.) as well asconfiguration data for the satellite wearable device 900.

As shown in FIG. 9B, remote configuration and shared data synchronizing940 can be performed via synched cloud data containers. One or moreencrypted containers 944 that are used to store parent cloud data can besynchronized with a parent device 950. A subset of the data in theencrypted containers 944 storing parent cloud data can be synchronizedwith one or more encrypted containers 943 that are used to store childcloud data. Data within the one or more encrypted containers 943 thatare used to store child cloud data can also be synchronized with one ormore devices associated with a child account, including a satellitewearable device 900, as well as non-smartphone child devices 942A-942Bassociated with a child account, such as a tablet computer or a laptopcomputer.

In one embodiment, user data, such as health data gathered via sensorson the satellite wearable device 900, can be synchronized with the childdevices 942A-942B using a peer to peer network connection or acloud-based connection. The aggregate data can be synched with theparent device 950 as remote configuration and shared data via the cloudstorage containers 943, 944. Such health data can include heartrate ormotion data, such as activity or exercise data.

In one embodiment the encrypted storage containers 943, 944 that storedata for the parent and child can include a subset of containers thatare used specifically for sharing data between a parent device and achild device. Such containers may be encrypted using keys held only bythe parent and child. The cloud storage provider will not retain accessto those keys and thus will not be able to access data within such cloudstorage containers.

FIG. 10A-10B illustrate methods to synchronize data between a satelliteaccessory and a management device. FIG. 10A illustrates a method 1000 toupdate a data item in a database that is shared between parent and childuser accounts within a family of user accounts. FIG. 10B illustrates amethod 1010 to enabling a device associated with a parent account toapprove the addition of a contact to be added to a device associatedwith a child account.

As shown in FIG. 10A, method 1000 includes for software logic to performoperations to receive an update to a data item in a database associatedwith a first account in a family of accounts, where the database isshared with a second account in the family of accounts (block 1002).Method 1000 additionally includes for software logic to synchronize afirst storage container for the database with a second storage containerfor the database, where, the first storage container is associated withthe first account and the second storage container is associated withthe second account (block 1004). The software logic can then push theupdate to the data item to a device associated with the second account(block 1006).

Where the data item is a data item in a database in which bi-directionalsharing is enabled, the first account can be an adult account or childaccount and the second account can also be a child account or an adultaccount. Where the data item is data to be pushed from a deviceassociated with a parent account (e.g., parent smartphone) to asatellite device associated with a child account, the first account is aparent account and the second account is a child account associated withthe satellite device.

As shown in FIG. 10B, method 1010 includes for software logic to performoperations to present a user interface to enable a wearable device torequest addition of contact to the wearable device (1012). The wearabledevice can be associated with a first account within a group or familyof associated accounts. The software logic can then transmit a requestto a management device to approve addition of the contact to thewearable device (1014). In one embodiment the management device isassociated with a second account within the group or family of theassociated accounts. The software logic can then add the contact to thewearable device in response to receipt of approval of addition of thecontact to the wearable device (1016). The software logic can then syncthe contact, via the wireless network interface, with a serverconfigured to store information for the first account (1018).

Software and Updates for Satellite and Management Devices

FIG. 11A-11C illustrate exemplary user interfaces to facilitate softwareupdates on a satellite accessory. FIG. 11A shows a software update userinterface for a management device. FIG. 11B shows a terms and conditionsuser interface for a management device. FIG. 11C shows a software updateuser interface on a satellite device.

As shown in FIG. 11A, an external device 1150, such as a managementdevice for a satellite device, can periodically receive notices that anupdate to a new software version is available. The external device 1150can present a software update user interface 1101 that presentsinformation about the software update, including informational text 1102about the new software version number and additional informational text1103 with details about the software version, including changes,updates, or bug fixes that are included in the new version. The softwareupdate user interface 1101 can also include an interface element 1104 toenable the download and install of the software update, an interfaceelement 1106 to enable or disable automatic updates on the externaldevice 1150, and an interface element 1108 to enable or disableautomatic updates on associated accessories, which can include asatellite accessory that is managed by the external device 1150.

As shown in FIG. 11B, a terms and conditions user interface 1111 can bepresented by the external device in conjunction with performing asoftware update. The terms and conditions user interface 1111 can bepresented for each software update or in response to a change in theversion of the terms and conditions. In one embodiment, if a user hasagreed to a version of the terms and conditions and a software updateuses the same version of the terms and conditions, the display of theterms and conditions user interface 1111 may be bypassed. The terms andconditions user interface 1111 can include a scrollable window 1115 thatdisplays terms and conditions details and a version number 1116 of theterms and conditions. The terms and conditions user interface 1111 canpresent an option to send the complete terms and conditions 1112 to theuser via e-mail for review. User interface elements can also bepresented to enable a user to disagree (interface element 1117) or agree(interface element 1118) with the terms and conditions.

As shown in FIG. 11C, device 1100, when configured as a satelliteaccessory of a child user, may present a software update user interface1120 that displays informational text 1122 that indicates that the termsand conditions of a pending software update have been agreed to by aparent. In one embodiment, agreement to a version of the terms andconditions on a management device is applied to satellite accessoriesthat are managed by the management device. In such embodiment, a user ofa satellite accessory that is used as the primary device of a user willnot be required to review the details of terms and conditions on thescreen of the satellite accessory, which may be a relatively smallerscreen compared to the screen of the management device. Thus, a userdesignated as a parent or guardian in a family of accounts may beallowed to agree to terms and conditions associated with softwareupdates on behalf of a child user. In a similar fashion, a userdesignated as a manager of a group of enterprise accounts may be allowedto agree to terms and conditions associated with software updates onbehalf of managed users. The software update user interface 1120 canpresent informational text 1124 indicating that device 1100 may beautomatically updated at a later time (e.g., tonight) when device 1100is placed on a charger. User interface elements can be presented toenable the user of device 1100 to disagree (interface element 1127) oragree (interface element 1126) to an automatic update to the newsoftware version. The software update user interface 1120 may alsodisplay an option (not shown) to immediately update to the new softwareversion, or to update to the new software version the next time device1100 is placed on a charger. In one embodiment the software update userinterface 1120 will not be shown unless the available software update iscompatible with software on the management device that enables theparent to manage or configure device 1100.

In embodiments described herein, where parent and child accounts and/orparent and child devices are described, similar techniques can also beapplied to enterprise employee accounts or devices that are managedaccounts or devices. Furthermore, operations regarding a family ofrelated accounts may be equivalent to operations regarding a group ofenterprise accounts.

FIG. 12 illustrate a method 1200 to perform software updates on asatellite accessory. The satellite accessory can be, for example, asatellite watch of a child user, although method 1200 can be used forother types of accessory devices.

In one embodiment, method 1200 includes for software on the satellitewatch to perform operations to receive notification of availability ofan updated version of a first operation system for the satellite device,which is a wearable electronic device associated with a first accountwithin a family of associated accounts (block 1202).

The satellite watch is managed by a management device associated with asecond account within the family of accounts. The satellite accessorycan then determine compatibility of the updated version of the firstoperating system with a second operating system on the management device(block 1204). Software updates for satellite watch can also be limitedto those versions of the software that are compatible with software onthe management device. Compatible versions are those versions that willnot break the communication link between the management device and thesatellite watch.

The satellite watch can then determine approval of terms and conditionsassociated with the updated version of the first operation system on themanagement device (block 1206). The satellite watch can then enable theupdate to the updated version of the first operating system in responseto determining capability and approval of the terms and conditions(block 1208).

Peer to Peer Configuration of Satellite Devices

FIG. 13A-13C illustrate a system to enable peer-to-peer configuration ofa satellite accessory. FIG. 13A shows wearable devices that can bemanaged using a peer-to-peer wireless connection with a managementdevice. FIG. 13B shows an accessory setup application that enablesselection between a paired accessory and satellite accessory. FIG. 13Cshows an accessory setup application that can be used to manage asatellite accessory.

As shown in FIG. 13A, a peer-to-peer configuration system can enable auser 1310, such as a user associated with a parent or guardian account,to switch between management of an accessory device 1314 of the user1310 and a satellite accessory device 1316. A management device 1312 ofthe parent or guardian can be paired with accessory device 1314 andmaintain a persistent connection with the accessory device. By default,the management application on the management device may be configured toadjust settings and configurations of accessory device 1314. In oneembodiment, the management application can also display an option toadjust settings and configuration of satellite accessory device 1316.Satellite accessory device 1316 need not be worn by the user 1310 orunlocked to enable management via the management application, althoughadjustment of some settings may be limited if satellite accessory device1316 is unlocked. Where satellite accessory device 1316 is configured tore-lock after a period of time if not attached to a user's wrist, in oneembodiment such feature may be disabled while satellite accessory device1316 is being managed by management device 1312. Alternatively,satellite accessory device 1316 may remain attached to the user of thesatellite accessory while being managed by management device 1312. Anexemplary management application is shown in FIG. 13B-13C. Themanagement application can be an accessory setup application that can beused to manage a paired or satellite accessory.

As shown in FIG. 13B, the accessory setup application can present anaccessory setup user interface 1320 that enables selection between apaired accessory and satellite accessory. In one embodiment, the pairedaccessory can be the accessory device 1314 of the user 1310 associatedwith a parent account. Accessory device 1314 can be designated in theaccessory setup user interface 1320 via an interface element 1321 with alabel 1322 indicating the accessory as a paired accessory. The accessorysetup user interface 1320 can also include a user interface feature 1324(e.g., box, highlight, etc.) that indicates that the paired accessory isthe selected or default accessory to be managed. The accessory setupuser interface 1320 can also present an interface element 1323 with alabel 1326 indicating the optional ability to manage a satelliteaccessory.

In one embodiment the interface element 1323 to select the satelliteaccessory for management can be displayed by the manage the accessorysetup user interface 1320 when the satellite accessory is detected to bewithin wireless range of the management device 1312. In one embodiment,the interface element 1323 can be displayed but indicated as unelectable(e.g., greyed out) unless the satellite accessory is within wirelessrange. When the interface element 1323 for the satellite accessory isselected for management, the management device 1312 can establish asecure and encrypted wireless connection with the satellite accessory.In one embodiment the management device 1312 may disconnect from thepaired accessory while managing the satellite accessory.

As shown in FIG. 13C, an additional accessory setup user interface 1330can be presented when a satellite accessory is selected for management.The accessory setup user interface 1330 that is presented to manage thesatellite accessory may be similar to the interface that would bepresented to manage the paired accessory or may include features thatare specific to management of a satellite accessory. The accessory setupuser interface 1330 can include a label 1331 indicating the accessorythat is being managed, a first interface region 1333 including a facegallery 1332 for selecting a face to be displayed on the satelliteaccessory, and a second interface region 1335 that includes settings andconfigurations 1334 that can be modified for the satellite accessory.The accessory setup user interface 1330 can also include an interfaceelement 1336 that enables a user to terminate management of thesatellite accessory. In one embodiment, when the user terminatesmanagement of the satellite accessory, the accessory setup applicationreturns to accessory setup user interface 1320 and re-selects the pairedaccessory. The management device 1312, in response to termination ofmanagement of the satellite accessory, may automatically reconnect tothe paired accessory. In one embodiment, accessory setup user interface1330 may timeout after a period of time when no input is received,automatically returning to accessory setup user interface 1320 and/orautomatically reconnecting to the paired accessory.

FIG. 14 illustrates a method 1400 of performing peer-to-peerconfiguration of a satellite accessory. Method 1400 includes operationsto scan for a satellite accessory device that is configurable by amanagement device (block 1402). When the satellite accessory device iswithin wireless range of the management device, the management devicecan display an option on a display of the management device to configurethe satellite accessory device (block 1404).

The management device can switch a management application on themanagement device to configure the satellite accessory device uponselection of option to configure the satellite accessory device (block1406). The management device can wirelessly connect to the satelliteaccessory device to enable configurations of the settings of thesatellite accessory device via the management application (block 1408).The management device can then terminate the wireless connection upon atimeout or when management of satellite accessory device is complete(block 1410). If the management device is associated with a wearableaccessory, the management application can automatically switch back tomanaging a wearable accessory that is associated with the managementdevice. If the management device is not associated with a wearableaccessory, the management device can switch to a NULL accessory.

Hardware Updates for Satellite and Management Devices

FIG. 15 illustrates a migration architecture 1500 that enables theupgrade of hardware of a management device associated with a satelliteaccessory. In one embodiment a management relationship between asatellite watch 1514 and a management device (old parent phone 1512) canbe migrated to new management device (new parent phone 1522) during ahardware upgrade process. Migration can be facilitated via securedstorage 1502, which can be associated with cloud storage provided by acloud storage provider. In one example, satellite watch 1514 is an Applewatch, new parent phone 1522 and old parent phone 1512 are iPhones, andsecured storage 1502 can be iCloud or iTunes secured storage, althoughembodiments are not limited as such.

Migration architecture 1500 and the techniques and examples disclosedherein can implement the techniques, examples, embodiments, methods andoperations disclosed in U.S. patent application Ser. No. 14/871,484having the title “Backup Accessible By Subset of Related Devices,” filedon Sep. 20, 2015; U.S. patent application Ser. No. 14/872,532 having thetitle “Data Protection for Keychain Syncing,” filed on Aug. 17, 2015;and U.S. patent application Ser. No. 15/273,414 having the title“Switching Between Watches or Other Accessories,” filed on Aug. 17,2015, which are all incorporated herein by reference and commonlyassigned.

Satellite watch 1514 can implement hardware-encrypted storage andclass-based protection of files and keychain items. For the migrationtechniques disclosed herein, satellite watch 1514 can be unlocked orlocked, e.g., unlocked by entering a passcode or locked with no passcodeentered. Data that enables the management of the satellite watch 1514 bythe old parent phone 1512 can be migrated to new parent phone 1522 usingmigration key 1507 and ID key 1509 as part of keychain 1506. ID key 1509allows new parent phone 1522 to discover or detect the satellite watch1514, which enables the new parent phone 1522 to perform peer-to-peermanagement of the satellite watch 1514. Migration key 1507 is syncedbetween the devices to enable shared data and configuration informationassociated with the satellite watch 1514 to be migrated to the newparent phone 1522. Migration key 1507 can be transmitted to thesatellite watch 1514 via a peer-to-peer data connection if the oldparent phone 1512 and the satellite watch are in proximity. Migrationkey 1507 can also be transmitted to the satellite watch 1514 via sharedcloud storage containers. In one embodiment, a portion of keychain 1506can be shared between parent and child user accounts. In such embodimentthe migration key 1507 can be synchronized via the shared portion ofkeychain 1506.

Keychain 1506 is a locked and encrypted container including private,sensitive, and confidential data such as account names and passwords orsecurity keys for applications, servers, websites, and cloud servicesand accounts. Keychain 1506 can also store confidential information suchas credit card numbers and information and personal identificationnumbers (PINs) for bank accounts and other personal accounts. Keychain1506 allows safe and secured storage of account names, passwords,security keys, credit card numbers and information, etc. on userapproved devices. Keychain 1506 can be used to store migration key 1507and ID key 1509 but can also store other information and keys not shown.In one example, migration key 1507 can be used by new phone 1522 todetect, determine, or verify if satellite watch 1514 is associated withmigration key 1507, and, in such a case, migration can proceed fromsatellite watch 1514 to new phone 1522. ID key 1509 can be used toidentify and communicate with satellite watch 1514.

In one example, migration key 1507 can be any type ofencryption/decryption key, e.g., an Advanced Encryption Standard (AES)key used to encrypt and decrypt data or content. And, in one example, IDkey 1509 can be an Identity Resolution Key, which is a Bluetoothencryption key, used by a first device to encrypt a random medium accesscontrol (MAC) address of the first device and used by a second device toidentify the real MAC address of the first device and communicate withit. In one example, new phone 1522 can detect ID key 1509 of satellitewatch 1514 advertising over Bluetooth. Satellite watch 1514 and newparent phone 1522 can communicate over secured and encryptedcommunication channels established via Bluetooth to determine ifmigration can proceed. Migration can occur without having a userre-validate the satellite watch 1514 during initial pairing with newphone 1522, e.g., by optically scanning a code on satellite watch 1514by new parent phone 1522, using an NFC tap, or entering a PIN, allowingmigration to be performed without any potential loss of data on thesatellite watch 1514.

In one embodiment, after old parent phone 1512 stores an old phonebackup 1504 in secured storage 1502. The user can upgrade to new parentphone 1522, which can be a newer hardware version or a replacement phoneof the same hardware version as the old parent phone 1512. During setupof new parent phone 1522, the user is prompted to restore a backup ofold phone 1512 from secured storage 1502 using user credentials for oldphone 1512 to authenticate the user. In one embodiment, two-level ortwo-factor authentication (2FA) can be used to authenticate the user ofnew parent phone 1522 to restore old phone backup 1504 from old newphone 1512. The migration key 1507 and ID key 1509 can be synched to thenew parent phone 1522 via keychain 1506. ID key 1509 can then be used toenable new parent phone 1522 to discover or detect the satellite watch1514. Migration key 1507 can be used to enable the migration of shareddata and configuration information associated with the satellite watch1514 to the new parent phone 1522.

FIG. 16 illustrates a method 1600 to enable hardware upgrade of amanagement device associated with a satellite accessory. The satelliteaccessory can be a wearable device as described herein, such as but notlimited to a smartwatch device. Method 1600 can be implemented using themigration architecture 1500 of FIG. 15 . Method 1600 includes forsoftware on a new management device to receive a migration key thatvalidates a trust relationship between a management electronic deviceand a satellite accessory (block 1602). The new management device canthen validate a wirelessly detected satellite wearable device via themigration key (block 1604). The new management device can then migrate amanagement association between the satellite wearable device and themanagement electronic device, where migrating the management associationincludes moving shared data and configuration settings of the satellitewearable device (block 1606). The migration key can be received at thenew management electronic device via a keychain that includes key datathat was received from the old management device.

FIG. 17 illustrates a system to enable transition of a satelliteaccessory to a paired accessory of a companion device. A device 1700that is configured as a satellite accessory may be used as a primarydevice of a user, such as a minor-aged user that does not havepersistent ownership, possession, or control of a smartwatch to use as acompanion device for the satellite accessory. If the user subsequentlyacquires a smartphone device or another device that can be used as acompanion device, the user may wish to pair the satellite accessory withthe smartphone device. In one embodiment, device 1700 may be required tobe reset and paired with the new companion device as shown in FIG. 3A-3Cand FIG. 4A-4C. In one embodiment, the user may instead be presentedwith an accessory migration user interface 1702.

The accessory migration user interface 1702 can present informative text1704 that presents the user with the option to disagree (interfaceelement 1706) or agree (interface element 1708) with the prompt tomigrate the satellite accessory to a paired accessory. If the useragrees to the prompt, the device 1700 will be transitioned to a paireddevice of the smartphone device of the user. The migration can beenabled using identification keys that at least quasi-uniquely identifydevice 1700 and a smartphone to which device 1700 is to be paired. Theidentification keys can allow device 1700 and the smartphone to mutuallyidentify and validate each other before a pairing process occurs. In oneembodiment the migration can be performed without a resetting andrestoring device 1700 and without performing the pairing operationsshown in FIG. 4A-4C.

FIG. 18 illustrates a method 1800 to enable transition of a satelliteaccessory to a paired accessory of a companion device. For example, asatellite accessory (e.g., satellite watch, etc.) of a user can betransitioned from a primary device to a secondary device by pairing thewearable device with a new smartphone device of the user. In oneembodiment, method 1800 includes for the satellite accessory and thepotential companion device to be paired with the satellite accessory toeach to receive a set of identification keys that identify the satellitewearable device and the companion device (block 1802). The companiondevice can validate the satellite accessory via a first identificationkey (block 1804). The satellite accessory can validate the companiondevice via a second identification key (block 1806). Upon validation, anestablished trust relationship can be established between the satelliteaccessory and the companion device (block 1808). The satellite accessorycan then be configured as a paired device of the companion device (block1810).

The present disclosure further contemplates that the entitiesresponsible for the collection, analysis, disclosure, transfer, storage,or other use of such personal information data will comply withwell-established privacy policies and/or privacy practices. Inparticular, such entities should implement and consistently use privacypolicies and practices that are generally recognized as meeting orexceeding industry or governmental requirements for maintaining personalinformation data private and secure. For example, personal informationfrom users should be collected for legitimate and reasonable uses of theentity and not shared or sold outside of those legitimate uses. Further,such collection should occur only after receiving the informed consentof the users. Additionally, such entities would take any needed stepsfor safeguarding and securing access to such personal information dataand ensuring that others with access to the personal information dataadhere to their privacy policies and procedures. Further, such entitiescan subject themselves to evaluation by third parties to certify theiradherence to widely accepted privacy policies and practices.

Despite the foregoing, the present disclosure also contemplatesembodiments in which users selectively block the use of, or access to,personal information data. That is, the present disclosure contemplatesthat hardware and/or software elements can be provided to prevent orblock access to such personal information data. For example, in the caseof advertisement delivery services, the present technology can beconfigured to allow users to select to “opt in” or “opt out” ofparticipation in the collection of personal information data duringregistration for services. In another example, users can select not toprovide location information for targeted content delivery services. Inyet another example, users can select to not provide precise locationinformation, but permit the transfer of location zone information.

Additional Exemplary Device Architectures

Embodiments described herein include one or more application programminginterfaces (APIs) in an environment in which calling program codeinteracts with other program code that is called through one or moreprogramming interfaces. Various function calls, messages, or other typesof invocations, which further may include various kinds of parameters,can be transferred via the APIs between the calling program and the codebeing called. In addition, an API may provide the calling program codethe ability to use data types or classes defined in the API andimplemented in the called program code.

An API allows a developer of an API-calling component (which may be athird-party developer) to leverage specified features provided by anAPI-implementing component. There may be one API-calling component orthere may be more than one such component. An API can be a source codeinterface that a computer system or program library provides in order tosupport requests for services from an application. An operating system(OS) can have multiple APIs to allow applications running on the OS tocall one or more of those APIs, and a service (such as a programlibrary) can have multiple APIs to allow an application that uses theservice to call one or more of those APIs. An API can be specified interms of a programming language that can be interpreted or compiled whenan application is built.

Generally, an API can be used to access a service or data provided bythe API-implementing component or to initiate performance of anoperation or computation provided by the API-implementing component. Byway of example, the API-implementing component and the API-callingcomponent may each be any one of an operating system, a library, adevice driver, an API, an application program, or other module (itshould be understood that the API-implementing component and theAPI-calling component may be the same or different type of module fromeach other). API-implementing components may in some cases be embodiedat least in part in firmware, microcode, or other hardware logic. Insome embodiments, an API may allow a client program to use the servicesprovided by a Software Development Kit (SDK) library. In otherembodiments an application or other client program may use an APIprovided by an Application Framework. In these embodiments theapplication or client program may incorporate calls to functions ormethods provided by the SDK and provided by the API or use data types orobjects defined in the SDK and provided by the API. An ApplicationFramework may in these embodiments provide a main event loop for aprogram that responds to various events defined by the Framework. TheAPI allows the application to specify the events and the responses tothe events using the Application Framework. In some implementations, anAPI call can report to an application the capabilities or state of ahardware device, including those related to aspects such as inputcapabilities and state, output capabilities and state, processingcapability, power state, storage capacity and state, communicationscapability, etc., and the API may be implemented in part by firmware,microcode, or other low level logic that executes in part on thehardware component.

FIG. 19 is a block diagram of mobile device architecture 1900, accordingto an embodiment. The mobile device architecture 1900 includes a memoryinterface 1902, a processing system 1904 including one or more dataprocessors, image processors and/or graphics processing units, and aperipherals interface 1906. The various components can be coupled by oneor more communication buses or signal lines. The various components canbe separate logical components or devices or can be integrated in one ormore integrated circuits, such as in a system on a chip integratedcircuit.

The memory interface 1902 can be coupled to memory 1950, which caninclude high-speed random-access memory such as static random-accessmemory (SRAM) or dynamic random access memory (DRAM) and/or non-volatilememory, such as but not limited to flash memory (e.g., NAND flash, NORflash, etc.).

Sensors, devices, and subsystems can be coupled to the peripheralsinterface 1906 to facilitate multiple functionalities. For example, amotion sensor 1910, a light sensor 1912, and a proximity sensor 1914 canbe coupled to the peripherals interface 1906 to facilitate the mobiledevice functionality. Other sensors 1916 can also be connected to theperipherals interface 1906, such as a positioning system (e.g., GPSreceiver), a temperature sensor, a biometric sensor, or other sensingdevice, to facilitate related functionalities. A camera subsystem 1920and an optical sensor 1922, e.g., a charged coupled device (CCD) or acomplementary metal-oxide semiconductor (CMOS) optical sensor, can beutilized to facilitate camera functions, such as recording photographsand video clips.

Communication functions can be facilitated through one or more wirelesscommunication subsystems 1924, which can include radio frequencyreceivers and transmitters and/or optical (e.g., infrared) receivers andtransmitters. The specific design and implementation of the wirelesscommunication subsystems 1924 can depend on the communication network(s)over which a mobile device is intended to operate. For example, a mobiledevice including the illustrated mobile device architecture 1900 caninclude wireless communication subsystems 1924 designed to operate overa GSM network, a CDMA network, an LTE network, a Wi-Fi network, aBluetooth network, or any other wireless network. In particular, thewireless communication subsystems 1924 can provide a communicationsmechanism over which a client browser application can retrieve resourcesfrom a remote web server.

An audio subsystem 1926 can be coupled to a speaker 1928 and amicrophone 1930 to facilitate voice-enabled functions, such as voicerecognition, voice replication, digital recording, and telephonyfunctions.

The I/O subsystem 1940 can include a touchscreen controller 1942 and/orother input controller(s) 1945. The touchscreen controller 1942 can becoupled to a touch sensitive display system 1946 (e.g., touchscreen).The touch sensitive display system 1946 and touchscreen controller 1942can, for example, detect contact and movement and/or pressure using anyof a plurality of touch and pressure sensing technologies, including butnot limited to capacitive, resistive, infrared, and surface acousticwave technologies, as well as other proximity sensor arrays or otherelements for determining one or more points of contact with a touchsensitive display system 1946. Display output for the touch sensitivedisplay system 1946 can be generated by a display controller 1943. Inone embodiment the display controller 1943 can provide frame data to thetouch sensitive display system 1946 at a variable frame rate.

In one embodiment a sensor controller 1944 is included to monitor,control, and/or processes data received from one or more of the motionsensor 1910, light sensor 1912, proximity sensor 1914, or other sensors1916. The sensor controller 1944 can include logic to interpret sensordata to determine the occurrence of one of more motion events oractivities by analysis of the sensor data from the sensors.

In one embodiment the I/O subsystem 1940 includes other inputcontroller(s) 1945 that can be coupled to other input/control devices1948, such as one or more buttons, rocker switches, thumb-wheel,infrared port, USB port, and/or a pointer device such as a stylus, orcontrol devices such as an up/down button for volume control of thespeaker 1928 and/or the microphone 1930.

In one embodiment, the memory 1950 coupled to the memory interface 1902can store instructions for an operating system 1952, including portableoperating system interface (POSIX) compliant and non-compliant operatingsystem or an embedded operating system. The operating system 1952 mayinclude instructions for handling basic system services and forperforming hardware dependent tasks. In some implementations, theoperating system 1952 can be a kernel.

The memory 1950 can also store communication instructions 1954 tofacilitate communicating with one or more additional devices, one ormore computers and/or one or more servers, for example, to retrieve webresources from remote web servers. The memory 1950 can also include userinterface instructions 1956, including graphical user interfaceinstructions to facilitate graphic user interface processing.

Additionally, the memory 1950 can store sensor processing instructions1958 to facilitate sensor-related processing and functions; telephonyinstructions 1960 to facilitate telephone-related processes andfunctions; messaging instructions 1962 to facilitateelectronic-messaging related processes and functions; web browserinstructions 1964 to facilitate web browsing-related processes andfunctions; media processing instructions 1966 to facilitate mediaprocessing-related processes and functions; location servicesinstructions including GPS and/or navigation instructions 1968 and Wi-Fibased location instructions to facilitate location based functionality;camera instructions 1970 to facilitate camera-related processes andfunctions; and/or other software instructions 1972 to facilitate otherprocesses and functions, e.g., security processes and functions, andprocesses and functions related to the systems. The memory 1950 may alsostore other software instructions such as web video instructions tofacilitate web video-related processes and functions; and/or webshopping instructions to facilitate web shopping-related processes andfunctions. In some implementations, the media processing instructions1966 are divided into audio processing instructions and video processinginstructions to facilitate audio processing-related processes andfunctions and video processing-related processes and functions,respectively. A mobile equipment identifier, such as an InternationalMobile Equipment Identity (IMEI) 1974 or a similar hardware identifiercan also be stored in memory 1950.

Each of the above identified instructions and applications cancorrespond to a set of instructions for performing one or more functionsdescribed above. These instructions need not be implemented as separatesoftware programs, procedures, or modules. The memory 1950 can includeadditional instructions or fewer instructions. Furthermore, variousfunctions may be implemented in hardware and/or in software, includingin one or more signal processing and/or application specific integratedcircuits.

FIG. 20 is a block diagram of one embodiment of a computing system 2000.The computing system illustrated in FIG. 20 is intended to represent arange of computing systems (either wired or wireless) including, forexample, desktop computer systems, laptop computer systems, tabletcomputer systems, cellular telephones, personal digital assistants(PDAs) including cellular-enabled PDAs, set top boxes, entertainmentsystems or other consumer electronic devices. Alternative computingsystems may include more, fewer and/or different components. Thecomputing system of FIG. 20 may be used to provide the computing deviceand/or the server device.

Computing system 2000 includes bus 2035 or other communication device tocommunicate information, and processor(s) 2010 coupled to bus 2035 thatmay process information.

While computing system 2000 is illustrated with a single processor,computing system 2000 may include multiple processors and/orco-processors 2010. Computing system 2000 further may include randomaccess memory (RAM) or other dynamic storage device (e.g., main memory2020), coupled to bus 2035 and may store information and instructionsthat may be executed by processor(s) 2010. Main memory 2020 may also beused to store temporary variables or other intermediate informationduring execution of instructions by processor(s) 2010.

Computing system 2000 may also include read only memory (ROM) 2030and/or another data storage device 2040 coupled to bus 2035 that maystore information and instructions for processor(s) 2010. Data storagedevice 2040 may be coupled to bus 2035 to store information andinstructions. Data storage device 2040 such as flash memory or amagnetic disk or optical disc and corresponding drive may be coupled tocomputing system 2000.

Computing system 2000 may also be coupled via bus 2035 to display device2050 to display information to a user. Computing system 2000 can alsoinclude an alphanumeric input device 2060, including alphanumeric andother keys, which may be coupled to bus 2035 to communicate informationand command selections to processor(s) 2010. Another type of user inputdevice is cursor control 2070, such as a touchpad, a mouse, a trackball,or cursor direction keys to communicate direction information andcommand selections to processor(s) 2010 and to control cursor movementon display device 2050. Computing system 2000 may also receive userinput from a remote device that is communicatively coupled to computingsystem 2000 via one or more network interface(s) 2080.

Computing system 2000 further may include one or more networkinterface(s) 2080 to provide access to a network, such as a local areanetwork. Network interface(s) 2080 may include, for example, a wirelessnetwork interface having antenna 2085, which may represent one or moreantenna(e). Computing system 2000 can include multiple wireless networkinterfaces such as a combination of Wi-Fi, Bluetooth®, near fieldcommunication (NFC), and/or cellular telephony interfaces. Networkinterface(s) 2080 may also include, for example, a wired networkinterface to communicate with remote devices via network cable 2087,which may be, for example, an Ethernet cable, a coaxial cable, a fiberoptic cable, a serial cable, or a parallel cable.

In one embodiment, network interface(s) 2080 may provide access to alocal area network, for example, by conforming to IEEE 802.11 b and/orIEEE 802.11 g standards, and/or the wireless network interface mayprovide access to a personal area network, for example, by conforming toBluetooth standards. Other wireless network interfaces and/or protocolscan also be supported. In addition to, or instead of, communication viawireless LAN standards, network interface(s) 2080 may provide wirelesscommunications using, for example, Time Division, Multiple Access (TDMA)protocols, Global System for Mobile Communications (GSM) protocols, CodeDivision, Multiple Access (CDMA) protocols, Long Term Evolution (LTE)protocols, and/or any other type of wireless communications protocol.

Computing system 2000 can further include one or more energy sources2005 and one or more energy measurement systems 2045. Energy sources2005 can include an AC/DC adapter coupled to an external power source,one or more batteries, one or more charge storage devices, a USBcharger, or other energy source. Energy measurement systems include atleast one voltage or amperage measuring device that can measure energyconsumed by the computing system 2000 during a predetermined period oftime. Additionally, one or more energy measurement systems can beincluded that measure, e.g., energy consumed by a display device,cooling subsystem, Wi-Fi subsystem, or other frequently used orhigh-energy consumption subsystem.

In the foregoing specification, the invention has been described withreference to specific embodiments thereof. It will, however, be evidentthat various modifications and changes can be made thereto withoutdeparting from the broader spirit and scope of the invention. Thespecification and drawings are, accordingly, to be regarded in anillustrative rather than a restrictive sense. The specifics in thedescriptions and examples provided may be used anywhere in one or moreembodiments. The various features of the different embodiments orexamples may be variously combined with some features included andothers excluded to suit a variety of different applications. Examplesmay include subject matter such as a method, means for performing actsof the method, at least one machine-readable medium includinginstructions that, when performed by a machine cause the machine toperform acts of the method, or of an apparatus or system according toembodiments and examples described herein. Additionally, variouscomponents described herein can be a means for performing the operationsor functions described in accordance with an embodiment.

Other embodiments described herein provide for a satellite device thatcan be a managed enterprise device associated with a managed enterpriseaccount. Certain information can be synchronized with the satellitedevice via the association with a group of enterprise accounts. Forexample, the satellite device can then access calendars, media, or otherdata that is shared with user accounts within a group of enterprise useraccounts. The satellite device can also support enterprise accountcreation by a management device on behalf of an employee or anotherenterprise user.

One embodiment provided for a mobile electronic device comprising one ormore wireless network interfaces, a camera device, a memory device tostore instructions, and one or more processors coupled with the one ormore wireless network interfaces, the camera device, and the memorydevice. The one or more processors are configured to executeinstructions stored on the memory device, the instructions to cause theone or more processors to invoke a wireless communications configurationmode for configuring a wearable accessory device via the mobileelectronic device, the mobile electronic device to establish a wirelessconnection with the wearable accessory device via the one or morewireless network interfaces, obtain identifying information for thewearable accessory device via an image captured via the camera,establish the wireless connection with the wearable accessory device viathe one or more wireless network interfaces based on the identifyinginformation obtained via the image captured via the camera, andconfigure the wearable accessory device for use with a first account,wherein the first account differs from a second account on the mobileelectronic device.

One embodiment provides for a method implemented on an electronicdevice, the method comprising receiving a request to associate a firstaccount in a family of accounts with a satellite accessory device,wherein the satellite accessory device is a wearable electronic deviceconfigured for operation without a paired companion device and thesatellite accessory device is to be at least partially managed by amanagement device associated with a second account in the family ofaccounts, determining that the first account has associated data storedwithin an online server and the first account is associated with anelectronic device other than the satellite accessory device, sending arequest to the electronic device to display a prompt requesting approvalto enable management of the associated data by the second account, andenabling management of data associated with the first account by thesecond account in response to receipt of approval from the electronicdevice.

One embodiment provides a non-transitory machine-readable medium storinginstructions to cause one or more processors of an electronic device toperform operations comprising establishing a wireless data connectionbetween the electronic device and a wireless accessory, displaying aprompt for authentication credentials associated with a first account,wherein the first account is to be associated with the wirelessaccessory and the first account differs from a second account, thesecond account associated with the electronic device, transmittingauthentication credentials for the first account to a first server,receiving an authentication response from the first server, wherein theauthentication response indicates that the wireless accessory is trustedby the first server, and sending credentials to the wireless accessoryto enable the wireless accessory to authenticate with a second serverusing the first account.

One embodiment provides an electronic device comprising a first wirelessnetwork interface, a second wireless network interface, a touch-screendisplay, and one or more processors to execute instructions stored inmemory. The instructions to cause the one or more processors toestablish a first data connection with an external electronic device viathe first wireless network interface, display, via the touch-screendisplay, a prompt to request input of a passcode for the electronicdevice, store a received passcode within memory of the electronicdevice, and receive, via the first data connection, credentials for anaccount to associate with the electronic device, the credentialsreceived via a user interface presented on the external electronicdevice. The one or more processors can additionally establish a seconddata connection with a server device via the second wireless networkinterface, authenticate with the server device via the credentials forthe account, and after authentication with the server device via thecredentials for the account, configure the electronic device toauthenticate with the server device via the passcode stored within thememory of the electronic device.

Other features of the present embodiments will be apparent from theaccompanying drawings and from the detailed description above.Accordingly, the true scope of the embodiments will become apparent tothe skilled practitioner upon a study of the drawings, specification,and following claims.

What is claimed is:
 1. An electronic device comprising: a memory; andone or more processors communicatively coupled to the memory andconfigured to execute instructions stored in the memory for performingoperations of: establishing a wireless data connection between theelectronic device and a wireless accessory; displaying a prompt forauthentication credentials associated with a first account, wherein thefirst account is to be associated with the wireless accessory and thefirst account differs from a second account, the second accountassociated with the electronic device; transmitting authenticationcredentials for the first account to a first server; receiving anauthentication response from the first server, wherein theauthentication response indicates that the wireless accessory is trustedby the first server; and sending the authentication credentials to thewireless accessory to configure the wireless accessory to authenticatewith a second server using the first account.
 2. The electronic deviceof claim 1, wherein the one or more processors are configured to executeinstructions for performing operations of: requesting the first serverto create the first account; and after requesting the first server tocreate the first account, displaying the prompt for the authenticationcredentials associated with the first account, wherein the prompt isincluded within a remote user interface provided by the first server fordisplay on the electronic device.
 3. The electronic device of claim 1,wherein the first account and the second account are accounts within afamily or group of associated accounts.
 4. The electronic device ofclaim 1, wherein the one or more processors are configured to executeinstructions for performing an operation of accessing a remote calendardatabase that is at least partially shared between the first account andthe second account.
 5. The electronic device of claim 1, wherein thewireless accessory includes a heart monitor, health sensor, or glucosemonitor.
 6. The electronic device of claim 1, wherein the wirelessaccessory is a wearable device.
 7. The electronic device as in claim 6,wherein the wearable device includes one or more of a GPS tracker,fitness tracker, virtual reality or augmented reality head mounteddisplay, jewelry, shoes, clothes, or other wearable item.
 8. Anelectronic device comprising: a memory; and one or more processorscommunicatively coupled to the memory and configured to executeinstructions stored in the memory for performing operations of:establishing a wireless data connection between the electronic device tobe associated with a first account and a second device associated with asecond account, wherein the first account differs from the secondaccount; transmitting data from the electronic device to the seconddevice, the data configured for verification by the second deviceidentifying information for the electronic device; receiving, from thesecond device in response to the data, credentials for the electronicdevice, the credentials indicating trust of the electronic device by afirst server; and authenticating the electronic device with a secondserver using the first account.
 9. The electronic device of claim 8,wherein the one or more processors are configured to executeinstructions for performing an operation of deriving a cryptographicsecret via a passcode, the cryptographic secret configured for theauthenticating of the electronic device with the second server.
 10. Theelectronic device of claim 8, wherein the first account and the secondaccount are accounts within a family or group of associated accounts.11. The electronic device of claim 8, wherein the one or more processorsare configured to execute instructions for performing an operation ofaccessing a remote calendar database that is at least partially sharedbetween the first account and the second account.
 12. The electronicdevice of claim 8, further comprising a heart monitor, health sensor, orglucose monitor.
 13. The electronic device of claim 8, furthercomprising one or more of a GPS tracker, fitness tracker, or virtualreality or augmented reality head mounted display.
 14. A methodcomprising: establishing a wireless data connection between a wirelessaccessory to be associated with a first account and an electronic deviceassociated with a second account, wherein the first account differs fromthe second account; transmitting data from the wireless accessory to theelectronic device, the data configured for verification by theelectronic device identifying information for the wireless accessory;receiving, from the electronic device in response to the data,credentials for the wireless accessory, the credentials indicating trustof the wireless accessory by a first server; and authenticating thewireless accessory with a second server using the first account.
 15. Themethod of claim 14, further comprising deriving a cryptographic secretvia a passcode, the cryptographic secret configured for theauthenticating of the wireless accessory with the second server.
 16. Themethod of claim 14, wherein the first account and the second account areaccounts within a family or group of associated accounts.
 17. The methodof claim 14, further comprising accessing a remote calendar databasethat is at least partially shared between the first account and thesecond account.
 18. The method of claim 14, wherein the wirelessaccessory includes a heart monitor, health sensor, or glucose monitor.19. The method of claim 14, wherein the wireless accessory includes oneor more of a GPS tracker, fitness tracker, or virtual reality oraugmented reality head mounted display.
 20. The method of claim 14,wherein the wireless accessory is an audio device.
 21. A non-transitorymachine-readable medium storing instructions to cause one or moreprocessors of an electronic device to perform operations comprising:establishing, by an application program, a wireless data connectionbetween the electronic device and a wireless accessory; causing a promptto be displayed for authentication credentials associated with a firstaccount for the application program, wherein the first account is to beassociated with the wireless accessory and the first account differsfrom a second account associated with the application program, thesecond account associated with the electronic device; transmitting, bythe application program, authentication credentials for the firstaccount to a first server; receiving, by the application program, anauthentication response from the first server, wherein theauthentication response indicates that the wireless accessory is trustedby the first server; and sending, by the application program, theauthentication credentials to the wireless accessory to configure thewireless accessory to authenticate with a second server using the firstaccount.
 22. The non-transitory machine-readable medium of claim 21, theoperations additionally comprising: requesting the first server tocreate the first account; and after requesting the first server tocreate the first account, causing the prompt to be displayed for theauthentication credentials associated with the first account, whereinthe prompt is included within a remote user interface provided by thefirst server for display by the application program on the electronicdevice.
 23. The non-transitory machine-readable medium of claim 21,wherein the first account and the second account are accounts within afamily or group of associated accounts associated with the applicationprogram.
 24. The non-transitory machine-readable medium of claim 21, theoperations additionally comprising accessing a remote databaseassociated with the application program, the remote database at leastpartially shared between the first account and the second account.